7.4 Ensure the SharePoint CallStack and AllowPageLevelTrace 'SafeMode' parameters are set to false - CallStack

Information

The CallStack and PageLevelTrace parameters are used when debugging a problem and displays detailed additional information.
Rationale:
The detailed additional information provided by the CallStack and PageLevelTrace parameters can be used by a malicious actor to gain sensitive information about the system parameters and application.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Locate the Web.configfile in your application root directory and edit it.
Edit the following SafeMode entry in the Web.config file:
1. Edit parameter CallStack='false'.
2. Edit parameter AllowPageLevelTrace='false'.
3. Close the Web.config file and save it.
Impact:
System sensitive information can be compromised.

See Also

https://workbench.cisecurity.org/files/2031

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-11a., CSCv6|18.5

Plugin: Windows

Control ID: 8697873b008cbe4ce7d8ae5c8f748a1cb3cd05c6298d8f9ab81129e6a2533d99