May 2, 2023 Miscellaneous- Audit deprecated.
- Metadata updated.
- References updated.
|
Apr 12, 2023 Functional Update- 1.1.2 Ensure NGINX is installed from source
- 2.1.1 Ensure only required modules are installed
- 2.1.2 Ensure HTTP WebDAV module is not installed
- 2.1.3 Ensure modules with gzip functionality are disabled
- 2.5.3 Ensure hidden file serving is disabled
- 3.5 Ensure error logs are sent to a remote syslog server
- 3.6 Ensure access logs are sent to a remote syslog server
- 4.1.12 Ensure your domain is preloaded
- 4.1.13 Ensure session resumption is disabled to enable perfect forward security
- 4.1.14 Ensure HTTP/2.0 is used
- 4.1.9 Ensure HTTP Public Key Pinning is enabled
- 5.1.1 Ensure allow and deny filters limit access to specific IP addresses
- 5.2.4 Ensure the number of connections per IP address is limited
- 5.2.5 Ensure rate limits by IP address are set
- 5.3.4 Ensure that Content Security Policy (CSP) is enabled and configured properly
- 5.3.5 Ensure the Referrer Policy is enabled and configured properly
Removed- CIS_NGINX_Level_2_Webserver_v1.0.0.audit from CIS NGINX Benchmark v1.0.0
|
Mar 7, 2023 Miscellaneous- Metadata updated.
- References updated.
|
Jan 4, 2023 |
Apr 25, 2022 |
Mar 29, 2022 Miscellaneous- Metadata updated.
- References updated.
|
Jun 17, 2021 Miscellaneous- Metadata updated.
- References updated.
|
Oct 5, 2020 Functional Update- 1.1.2 Ensure NGINX is installed from source
- 2.1.1 Ensure only required modules are installed
- 2.1.2 Ensure HTTP WebDAV module is not installed
- 2.1.3 Ensure modules with gzip functionality are disabled
- 2.5.3 Ensure hidden file serving is disabled
- 3.5 Ensure error logs are sent to a remote syslog server
- 3.6 Ensure access logs are sent to a remote syslog server
- 4.1.12 Ensure your domain is preloaded
- 4.1.13 Ensure session resumption is disabled to enable perfect forward security
- 4.1.14 Ensure HTTP/2.0 is used
- 4.1.9 Ensure HTTP Public Key Pinning is enabled
- 5.1.1 Ensure allow and deny filters limit access to specific IP addresses
- 5.2.4 Ensure the number of connections per IP address is limited
- 5.2.5 Ensure rate limits by IP address are set
- 5.3.4 Ensure that Content Security Policy (CSP) is enabled and configured properly
- 5.3.5 Ensure the Referrer Policy is enabled and configured properly
|
Sep 29, 2020 |
Jul 14, 2020 |
