Detections
Analytics

DISA STIG VMware vSphere 6.7 Perfcharts Tomcat v1r2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG VMware vSphere 6.7 Perfcharts Tomcat v1r2

Updated: 10/31/2023

Authority: DISA STIG

Plugin: Unix

Revision: 1.4

Estimated Item Count: 36

File Details

Filename: DISA_STIG_VMware_vSphere_6.7_Perfcharts_Tomcat_v1r2.audit

Size: 61.3 kB

MD5: 156319f7d3d9218b9c7e5bbff7f436d7
SHA256: 6d89defe8e084f339dfbfc692476befc65b761e3f4dba4d27398c6e1e4f261f5

Audit Items

DescriptionCategories
DISA_STIG_VMware_vSphere_6.7_Perfcharts_Tomcat_v1r2.audit from DISA VMware vSphere 6.7 Perfcharts Tomcat v1r2 STIG
VCPF-67-000001 - Performance Charts must limit the amount of time that each TCP connection is kept alive.
VCPF-67-000002 - Performance Charts must limit the number of concurrent connections permitted.
VCPF-67-000003 - Performance Charts must limit the maximum size of a POST request.
VCPF-67-000004 - Performance Charts must protect cookies from cross-site scripting (XSS).
VCPF-67-000005 - Performance Charts must record user access in a format that enables monitoring of remote access.
VCPF-67-000006 - Performance Charts must generate log records for system startup and shutdown.
VCPF-67-000007 - Performance Charts log files must only be modifiable by privileged users.
VCPF-67-000008 - Performance Charts application files must be verified for their integrity.
VCPF-67-000009 - Performance Charts must only run one web app.
VCPF-67-000010 - Performance Charts must not be configured with unsupported realms.
VCPF-67-000011 - Performance Charts must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell programs disabled.
VCPF-67-000012 - Performance Charts must have mappings set for Java servlet pages.
VCPF-67-000013 - Performance Charts must not have the Web Distributed Authoring (WebDAV) servlet installed.
VCPF-67-000014 - Performance Charts must be configured with memory leak protection.
VCPF-67-000015 - Performance Charts must not have any symbolic links in the web content directory tree.
VCPF-67-000016 - Performance Charts directory tree must have permissions in an 'out-of-the box' state - out-of-the box state.
VCPF-67-000017 - Performance Charts must fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.
VCPF-67-000018 - Performance Charts must limit the number of allowed connections.
VCPF-67-000019 - Performance Charts must set 'URIEncoding' to UTF-8 - URIEncoding to UTF-8.
VCPF-67-000020 - Performance Charts must use the 'setCharacterEncodingFilter' filter - filter
VCPF-67-000020 - Performance Charts must use the 'setCharacterEncodingFilter' filter - filter-mapping
VCPF-67-000021 - Performance Charts must set the welcome-file node to a default web page.
VCPF-67-000022 - Performance Charts must not show directory listings.
VCPF-67-000023 - Performance Charts must be configured to show error pages with minimal information.
VCPF-67-000024 - Performance Charts must not enable support for TRACE requests.
VCPF-67-000025 - Performance Charts must have the debug option turned off.
VCPF-67-000026 - Performance Charts must properly configure log sizes and rotation - MaxBackupIndex
VCPF-67-000026 - Performance Charts must properly configure log sizes and rotation - MaxFileSize
VCPF-67-000027 - Rsyslog must be configured to monitor and ship Performance Charts log files - localhost_access
VCPF-67-000027 - Rsyslog must be configured to monitor and ship Performance Charts log files - runtime
VCPF-67-000028 - Performance Charts must be configured with the appropriate ports - http
VCPF-67-000028 - Performance Charts must be configured with the appropriate ports - https
VCPF-67-000029 - Performance Charts must disable the shutdown port.
VCPF-67-000030 - Performance Charts must set the secure flag for cookies.
VCPF-67-000031 - Performance Charts must be configured to limit access to internal packages.