8 - Management IP - .htacess exists

Information

A dedicated management IP should be configured

Avoid Unauthorized user access to the server

Solution

create .htaccess file in the root directory of your web application. Find in $jetty_home/contexts xml file, which corresponds to the name of your Jetty web application (test.xml in our case) and protect access to your application by HTAccessHandler, that uses the .htaccess policy file.

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, CSCv6|3.1

Plugin: Unix

Control ID: 1a7e3b8e8a7256f41f60d0f8fd69faf6b58a7889b9c9be6581dc35e54166f4e7