Item Search

NameAudit NamePluginCategory
3.018 - Anonymous shares are not restricted. - RestrictAnonymousSAMDISA Windows Vista STIG v6r41Windows

SYSTEM AND COMMUNICATIONS PROTECTION

3.031 - The Send download LanMan compatible password option is not set to Send NTLMv2 response only\refuse LM.DISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

3.063 - Unauthorized named pipes are accessible with anonymous credentials.DISA Windows Vista STIG v6r41Windows

SYSTEM AND COMMUNICATIONS PROTECTION

3.064 - Unauthorized registry paths are remotely accessible.DISA Windows Vista STIG v6r41Windows

SYSTEM AND COMMUNICATIONS PROTECTION

3.065 - Unauthorized shares can be accessed anonymously.DISA Windows Vista STIG v6r41Windows

SYSTEM AND COMMUNICATIONS PROTECTION

5.005 - Installed FTP server is configured to allow access to the system drive.DISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

5.007 - An approved, up-to-date, DoD antivirus program must be installed and used.DISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

5.016 - Internet Information System (IIS) or its subcomponents are installed on a workstation.DISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

DG0129-ORACLE11 - Passwords should be encrypted when transmitted across the network.DISA STIG Oracle 11 Installation v9r1 WindowsWindows

IDENTIFICATION AND AUTHENTICATION

DO3630-ORACLE11 - The Oracle Listener should be configured to require administration authentication - 'No listeners are running'DISA STIG Oracle 11 Installation v9r1 LinuxUnix

IDENTIFICATION AND AUTHENTICATION

DO3630-ORACLE11 - The Oracle Listener should be configured to require administration authentication - 'No listeners are running'DISA STIG Oracle 11 Installation v9r1 WindowsWindows

ACCESS CONTROL

DTOO999 - Publisher - The version of Microsoft Publisher running on the system must be a supported version.DISA STIG Office 2010 Publisher v1r12Windows

SYSTEM AND INFORMATION INTEGRITY

DTOO999-Access13 - The version of Microsoft Access running on the system must be a supported version.DISA STIG Microsoft Access 2013 v1r7Windows

SYSTEM AND INFORMATION INTEGRITY

DTOO999-Project13 - The version of Microsoft Project running on the system must be a supported version.DISA STIG Microsoft Project 2013 v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

DTOO999-Visio13 - The version of Visio running on the system must be a supported version.DISA STIG Microsoft Visio 2013 v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

GEN002040 - There must be no .rhosts, .shosts, hosts.equiv, or shosts.equiv files on the system - '.rhosts'DISA STIG AIX 5.3 v1r2Unix

CONFIGURATION MANAGEMENT

GEN002040 - There must be no .rhosts, .shosts, hosts.equiv, or shosts.equiv files on the system - '.shosts'DISA STIG AIX 5.3 v1r2Unix

CONFIGURATION MANAGEMENT

GEN002040 - There must be no .rhosts, .shosts, hosts.equiv, or shosts.equiv files on the system - 'hosts.equiv'DISA STIG AIX 5.3 v1r2Unix

CONFIGURATION MANAGEMENT

GEN004220 - Administrative accounts must not run a web browser, except as needed for local service administration.DISA STIG AIX 5.3 v1r2Unix

ACCESS CONTROL

GEN004600 - The SMTP service must be an up-to-date version.DISA STIG AIX 5.3 v1r2Unix

SYSTEM AND INFORMATION INTEGRITY

GEN004620 - The Sendmail server must have the debug feature disabled.DISA STIG AIX 5.3 v1r2Unix

CONFIGURATION MANAGEMENT

GEN005080 - The TFTP daemon must operate in 'secure mode' which provides access only to a single directory on the host file system.DISA STIG AIX 5.3 v1r2Unix

CONFIGURATION MANAGEMENT

GEN005200 - X displays must not be exported to the world.DISA STIG AIX 5.3 v1r2Unix

ACCESS CONTROL

GEN008600 - The system must be configured to only boot from the system boot device.DISA STIG AIX 5.3 v1r2Unix

CONFIGURATION MANAGEMENT

WA000-WI050 IIS6 - Unused and vulnerable script mappings in IIS 6 must be removed. - '.bat mappings'DISA STIG IIS 6.0 Site Checklist v6r16Windows

CONFIGURATION MANAGEMENT

WA000-WI050 IIS6 - Unused and vulnerable script mappings in IIS 6 must be removed. - '.cmd mappings'DISA STIG IIS 6.0 Site Checklist v6r16Windows

CONFIGURATION MANAGEMENT

WA000-WI050 IIS6 - Unused and vulnerable script mappings in IIS 6 must be removed. - '.HTR scripting Disallowed'DISA STIG IIS 6.0 Site Checklist v6r16Windows

CONFIGURATION MANAGEMENT

WA000-WI050 IIS6 - Unused and vulnerable script mappings in IIS 6 must be removed. - 'Allowed Web Service Extensions'DISA STIG IIS 6.0 Site Checklist v6r16Windows

CONFIGURATION MANAGEMENT

WA000-WI050 IIS6 - Unused and vulnerable script mappings in IIS 6 must be removed. - 'Index Server Web Interface Disallowed'DISA STIG IIS 6.0 Site Checklist v6r16Windows

CONFIGURATION MANAGEMENT

WA000-WI050 IIS6 - Unused and vulnerable script mappings in IIS 6 must be removed. - 'Internet Data Connector Disallowed'DISA STIG IIS 6.0 Site Checklist v6r16Windows

CONFIGURATION MANAGEMENT

WA000-WI050 IIS6 - Unused and vulnerable script mappings in IIS 6 must be removed. - 'Server Side Includes Disallowed'DISA STIG IIS 6.0 Site Checklist v6r16Windows

CONFIGURATION MANAGEMENT

WA000-WI092 IIS6 - The IIS web site permissions 'Write' or 'Script Source' must not be selected. - 'Script Source permission check'DISA STIG IIS 6.0 Site Checklist v6r16Windows

ACCESS CONTROL

WA000-WI092 IIS6 - The IIS web site permissions 'Write' or 'Script Source' must not be selected. - 'Write permission check'DISA STIG IIS 6.0 Site Checklist v6r16Windows

ACCESS CONTROL

WA000-WI110 IIS6 - The command shell options must be disabled.DISA STIG IIS 6.0 Server v6r16Windows

ACCESS CONTROL

WA000-WI6040 IIS6 - A unique non-privileged account must be used to run Worker Process Identities. - 'AppPoolIdentityType = 3 - WAMUserName'DISA STIG IIS 6.0 Site Checklist v6r16Windows

ACCESS CONTROL

WA000-WI6040 IIS6 - A unique non-privileged account must be used to run Worker Process Identities. - 'AppPoolIdentityType Check'DISA STIG IIS 6.0 Site Checklist v6r16Windows

ACCESS CONTROL

WA000-WWA054 A22 - Server side includes (SSIs) must run with execution capability disabled - -+IncludesNOEXEC|-IncludesDISA STIG Apache Server 2.2 Unix v1r11Unix

ACCESS CONTROL

WA000-WWA054 A22 - Server side includes (SSIs) must run with execution capability disabled - +IncludesDISA STIG Apache Server 2.2 Unix v1r11Unix

ACCESS CONTROL

WA000-WWA054 W22 - Server side includes (SSIs) must run with execution capability disabled.DISA STIG Apache Server 2.2 Windows v1r13Windows

CONFIGURATION MANAGEMENT

WG190 A22 - Web server software must be a vendor-supported version.DISA STIG Apache Server 2.2 Unix v1r11Unix

SYSTEM AND INFORMATION INTEGRITY

WG195 IIS6 - Anonymous access accounts must be restricted.DISA STIG IIS 6.0 Server v6r16Windows

ACCESS CONTROL

WG200 A22 - Administrators must be the only users allowed access to the directory tree, the shell, or other operating system functions and utilities.DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix

ACCESS CONTROL

WG200 A22 - Administrators must be the only users allowed access to the directory tree, the shell, or other operating system functions and utilities.DISA STIG Apache Server 2.2 Unix v1r11Unix

ACCESS CONTROL

WG230 W22 - Web server administration must be performed over a secure path or at the local console.DISA STIG Apache Site 2.2 Windows v1r13Windows

ACCESS CONTROL

WG290 A22 - Web client access to the content directories must be restricted to read and execute - script aliasDISA STIG Apache Site 2.2 Unix v1r11 MiddlewareUnix

CONFIGURATION MANAGEMENT

WG290 A22 - Web client access to the content directories must be restricted to read and execute - script alias matchDISA STIG Apache Site 2.2 Unix v1r11 MiddlewareUnix

CONFIGURATION MANAGEMENT

WG360 A22 - Symbolic links must not be used in the web content directory tree - confDISA STIG Apache Site 2.2 Unix v1r11 MiddlewareUnix

CONFIGURATION MANAGEMENT

WG385 IIS6 - All web server documentation, sample code, example applications, and tutorials must be removed. - 'Inetpub\AdminScripts'DISA STIG IIS 6.0 Server v6r16Windows

CONFIGURATION MANAGEMENT

WG385 W22 - All web server documentation, sample code, example applications, and tutorials must be removed from a production web server. - 'extra'DISA STIG Apache Server 2.2 Windows v1r13Windows

CONFIGURATION MANAGEMENT

WG385 W22 - All web server documentation, sample code, example applications, and tutorials must be removed from a production web server. - 'printenv'DISA STIG Apache Server 2.2 Windows v1r13Windows

CONFIGURATION MANAGEMENT