Item Search

Name	Audit Name	Plugin	Category
9 - Information Leakage	TNS Best Practice Jetty 9 Linux	Unix
13 - Restrict access to temp directory - mode	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
18 - Restrict access to context.xml - owner	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
19 - Cluster Authentication	TNS Best Practice JBoss 7 Linux	Unix	ACCESS CONTROL
19 - Restrict access to logging.properties - owner	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
21 - Restrict access to users.xml - mode	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
23 - Strong password policy must be established	TNS Best Practice Jetty 9 Linux	Unix
24 - Remove extraneous files and directories - $JETTY_BASE/webapps/doc	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
24 - Remove extraneous files and directories - $JETTY_BASE/webapps/examples	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
24 - Remove extraneous files and directories - $JETTY_BASE/webapps/js-examples	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
43 - Do not resolve hosts on logging valves - SERVER_XML	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
44 - Use Lockout Realms	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
Buffer overflow protection should be configured 'LimitRequestFieldsize'	TNS IBM HTTP Server Best Practice	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
CGI-BIN directory should be disabled. 'Addmodule mod_cgi.c'	TNS IBM HTTP Server Best Practice	Windows	CONFIGURATION MANAGEMENT
CGI-BIN directory should be disabled. 'Addmodule mod_cgi.c'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
CGI-BIN directory should be disabled. 'LoadModule env_module'	TNS IBM HTTP Server Best Practice	Windows	CONFIGURATION MANAGEMENT
Configuration files should be secured against unauthorized access.	TNS IBM HTTP Server Best Practice	Windows
Extreme : Only allow SNMPv3	TNS Extreme ExtremeXOS Best Practice Audit	Extreme_ExtremeXOS	CONFIGURATION MANAGEMENT
Extreme : Password Policy - min-length >= 8	TNS Extreme ExtremeXOS Best Practice Audit	Extreme_ExtremeXOS	IDENTIFICATION AND AUTHENTICATION
Fortigate - Admin password lockout >= 300 seconds	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - Admin SCP - 'disabled'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - Disable insecure services - TELNET	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - Disable SSHv1 admin access	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - DNS - primary server	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	SYSTEM AND COMMUNICATIONS PROTECTION
Fortigate - External Logging - 'syslog2'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Fortianalyzer2 Logs - severity 'information'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Local Logging - severity 'information'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Log WAN optimization messages	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Password Complexity - 1 lowercase letter	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - Password Complexity - 4 char difference	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - reset-sessionless-tcp disabled	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	SYSTEM AND COMMUNICATIONS PROTECTION
Fortigate - Send malware statistics to FortiGuard 'Disabled'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - Webfilter License - Not Expired	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
HTTP TRACE method should be disabled. 'RewriteEngine'	TNS IBM HTTP Server Best Practice	Windows	CONFIGURATION MANAGEMENT
HTTP TRACE method should be disabled. 'RewriteLog'	TNS IBM HTTP Server Best Practice	Windows	AUDIT AND ACCOUNTABILITY
Huawei: Configure appropriate NTP server	TNS Huawei VRP Best Practice Audit	Huawei	AUDIT AND ACCOUNTABILITY
Huawei: Device clock disable DST adjustment	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Information Center is not disabled.	TNS Huawei VRP Best Practice Audit	Huawei	AUDIT AND ACCOUNTABILITY
Huawei: Insecure HTTP is not configured.	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Require Group for SNMPv3 Access	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
Huawei: Require service timestamp	TNS Huawei VRP Best Practice Audit	Huawei	AUDIT AND ACCOUNTABILITY
Huawei: Set super password	TNS Huawei VRP Best Practice Audit	Huawei	IDENTIFICATION AND AUTHENTICATION
Huawei: SNMP appropriate trap host	TNS Huawei VRP Best Practice Audit	Huawei	AUDIT AND ACCOUNTABILITY
Huawei: SNMP Community string != private	TNS Huawei VRP Best Practice Audit	Huawei	IDENTIFICATION AND AUTHENTICATION
Huawei: User Interfaces are Authenticated	TNS Huawei VRP Best Practice Audit	Huawei	IDENTIFICATION AND AUTHENTICATION
Logging Directives should be restricted to authorized users. - 'ErrorLog logs/error_log'	TNS IBM HTTP Server Best Practice	Windows	AUDIT AND ACCOUNTABILITY
MaxClients parameter value should be configured to appropriate value.	TNS IBM HTTP Server Best Practice	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MaxKeepAliveRequests parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Non-Essential modules should be disabled. 'mod_autoindex'	TNS IBM HTTP Server Best Practice	Windows	CONFIGURATION MANAGEMENT
Server version information parameters should be turned off - 'ServerTokens Prod'	TNS IBM HTTP Server Best Practice	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search