WG080 A22 - Installation of a compiler on production web server is prohibited.


The presence of a compiler on a production server facilitates the malicious user's task of creating custom versions of programs and installing Trojan Horses or viruses. For example, the attacker's code can be uploaded and compiled on the server under attack.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.


Remove any compiler found on the production web server, but if the compiler program is needed to patch or upgrade an application suite in a production environment or the compiler is embedded and will break the suite if removed, document the compiler installation with the ISSO/ISSM and ensure that the compiler is restricted to only administrative users.

See Also


Item Details

References: CAT|II, Rule-ID|SV-32956r3_rule, STIG-ID|WG080_A22, Vuln-ID|V-2236

Plugin: Unix

Control ID: 43bbb48d6b912f6a3bd736b64d1201ef22ed4710de9956fa2af64419286ea5ee