WA00530 W22 - The process ID (PID) file must be properly secured.

Information

The PidFile directive sets the path to the process ID file to which the server records the process ID of the server, which is useful for sending a signal to the server process or for checking on the health of the process. If the PidFile is placed in a writable directory, other accounts could create a denial of service attack and prevent the server from starting by creating a PID file with the same name.

Solution

Modify the location and/or permissions for the PID file and/or folder.

See Also

https://iasecontent.disa.mil/stigs/zip/U_Apache_2-2_WIN_V1R13_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-6(7), 800-53|CM-6, CAT|II, CSCv6|3.1, Rule-ID|SV-33177r1_rule, STIG-ID|WA00530_W22, Vuln-ID|V-26305

Plugin: Windows

Control ID: 4397cb6ba56c3e143571a83cd5e1211cf4b4d8ae888b1b1c3d63dd92dbfafa7d