Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.1 Alter the Advertised server.info StringCIS Apache Tomcat 9 L2 v1.2.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 9 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.7 Ensure Sever Header is Modified To Prevent Information DisclosureCIS Apache Tomcat 8 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.7 Ensure Sever Header is Modified To Prevent Information DisclosureCIS Apache Tomcat 8 L2 v1.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 9 L1 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 9 L1 v1.2.0 MiddlewareUnix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 10.1 v1.1.0 L1Unix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 10 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 10 L1 v1.1.0 MiddlewareUnix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 11 v1.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

AS24-U1-000680 - The Apache web server must be configured to immediately disconnect or disable remote access to the hosted applications.DISA STIG Apache Server 2.4 Unix Server v3r1Unix

ACCESS CONTROL

AS24-U1-000680 - The Apache web server must be configured to immediately disconnect or disable remote access to the hosted applications.DISA STIG Apache Server 2.4 Unix Server v3r1 MiddlewareUnix

ACCESS CONTROL

AS24-U2-000780 - The Apache web server application, libraries, and configuration files must only be accessible to privileged users.DISA STIG Apache Server 2.4 Unix Site v2r4Unix

AUDIT AND ACCOUNTABILITY

AS24-U2-000780 - The Apache web server application, libraries, and configuration files must only be accessible to privileged users.DISA STIG Apache Server 2.4 Unix Site v2r4 MiddlewareUnix

AUDIT AND ACCOUNTABILITY

AS24-W1-000680 - The Apache web server must be configured to immediately disconnect or disable remote access to the hosted applications.DISA STIG Apache Server 2.4 Windows Server v3r1Windows

ACCESS CONTROL

AS24-W1-000680 - The Apache web server must be configured to immediately disconnect or disable remote access to the hosted applications.DISA STIG Apache Server 2.4 Windows Server v2r3Windows

ACCESS CONTROL

BIND-9X-001702 - The BIND 9.x server implementation must prohibit the forwarding of queries to servers controlled by organizations outside of the U.S. Government.DISA BIND 9.x STIG v2r3Unix

CONFIGURATION MANAGEMENT

CIS_Apache_Tomcat_9_L1_v1.2.0_Middleware.audit from CIS Apache Tomcat 9 BenchmarkCIS Apache Tomcat 9 L1 v1.2.0 MiddlewareUnix
CIS_Apache_Tomcat_9_L1_v1.2.0.audit from CIS Apache Tomcat 9 BenchmarkCIS Apache Tomcat 9 L1 v1.2.0Unix
CIS_Apache_Tomcat_9_L2_v1.2.0_Middleware.audit from CIS Apache Tomcat 9 BenchmarkCIS Apache Tomcat 9 L2 v1.2.0 MiddlewareUnix
CIS_Apache_Tomcat_9_L2_v1.2.0.audit from CIS Apache Tomcat 9 BenchmarkCIS Apache Tomcat 9 L2 v1.2.0Unix
DISA_CloudLinux_AlmaLinux_OS_9_STIG_v1r2.audit from DISA CloudLinux AlmaLinux OS 9 STIG v1r2DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix
DISA_IBM_WebSphere_Traditional_9_v1r1_Middleware.audit for DISA IBM WebSphere Traditional 9 STIG v1r1 MiddlewareDISA IBM WebSphere Traditional 9 STIG v1r1 MiddlewareUnix
DISA_IBM_WebSphere_Traditional_9_v1r1.audit for DISA IBM WebSphere Traditional 9 STIG v1r1DISA IBM WebSphere Traditional 9 STIG v1r1Unix
DISA_IBM_WebSphere_Traditional_9_Windows_v1r1.audit for DISA IBM WebSphere Traditional 9 STIG v1r1DISA IBM WebSphere Traditional 9 Windows STIG v1r1Windows
DISA_IIS_8.5_Web_Site_v2r9.audit from DISA Microsoft IIS 8.5 Site v2r9 STIGDISA IIS 8.5 Site v2r9Windows
DISA_STIG_Apache_Server-2.2_Unix_v1r11_Middleware.audit from DISA Apache 2.2 Unix STIG v1r11DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
DISA_STIG_Apache_Server-2.2_Unix_v1r11.audit from DISA Apache 2.2 Unix STIG v1r11DISA STIG Apache Server 2.2 Unix v1r11Unix
DISA_STIG_Apache_Server-2.2_Windows_v1r13.audit from DISA APACHE 2.2 Server for Windows v1r13 STIGDISA STIG Apache Server 2.2 Windows v1r13Windows
DISA_STIG_Apache_Site-2.2_Unix_v1r11_Middleware.audit from DISA Apache 2.2 Unix STIG v1r11DISA STIG Apache Site 2.2 Unix v1r11 MiddlewareUnix
DISA_STIG_Apache_Site-2.2_Unix_v1r11.audit from DISA Apache 2.2 Unix STIG v1r11DISA STIG Apache Site 2.2 Unix v1r11Unix
DISA_STIG_Apache_Site-2.2_Windows_v1r13.audit from DISA APACHE 2.2 Site for Windows v1r13 STIGDISA STIG Apache Site 2.2 Windows v1r13Windows
DISA_STIG_Apache_Site-2.4_Unix_v2r4.audit from DISA Apache Server 2.4 UNIX Site v2r4 STIGDISA STIG Apache Server 2.4 Unix Site v2r4Unix
DISA_STIG_Apache_Site-2.4_Windows_v2r1.audit from DISA Apache Server 2.4 Windows Site v2r1 STIGDISA STIG Apache Server 2.4 Windows Site v2r1Windows
DISA_STIG_BIND_9_v2r3.audit from DISA BIND 9.x v2r3 STIGDISA BIND 9.x STIG v2r3Unix
DISA_STIG_Microsoft_Internet_Explorer_9_v1r15.audit from DISA Microsoft Internet Explorer 9 v1r15 STIGDISA STIG Microsoft Internet Explorer 9 v1r15Windows
DISA_STIG_MSSQL_2012_Database_v1r20.audit from DISA Microsoft SQL Server Instance 2012 v1r20 STIGDISA STIG SQL Server 2012 Database Audit v1r20MS_SQLDB
DISA_STIG_MSSQL_2012_Instance-DB_v1r20.audit from DISA Microsoft SQL Server Instance 2012 v1r20 STIGDISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB
DISA_STIG_MSSQL_2012_Instance-OS_v1r20.audit from DISA Microsoft SQL Server Instance 2012 v1r20 STIGDISA STIG SQL Server 2012 Database OS Audit v1r20Windows
DISA_STIG_PostgreSQL_9-x_on_RHEL_v2r5_OS.audit from DISA PostgreSQL 9.x v2r5 STIGDISA STIG PostgreSQL 9.x on RHEL OS v2r5Unix
DISA_STIG_VMware_vSphere_6.7_EAM_Tomcat_v1r4.audit from DISA VMware vSphere 6.7 EAM Tomcat v1r4 STIGDISA STIG VMware vSphere 6.7 EAM Tomcat v1r4Unix
DISA_STIG_VMware_vSphere_6.7_Perfcharts_Tomcat_v1r3.audit from DISA VMware vSphere 6.7 Perfcharts Tomcat v1r3 STIGDISA STIG VMware vSphere 6.7 Perfcharts Tomcat v1r3Unix
DISA_STIG_VMware_vSphere_6.7_STS_Tomcat_v1r3.audit from DISA VMware vSphere 6.7 STS Tomcat v1r3 STIGDISA STIG VMware vSphere 6.7 STS Tomcat v1r3Unix
DISA_STIG_VMware_vSphere_6.7_UI_Tomcat_v1r3.audit from DISA VMware vSphere 6.7 UI Tomcat v1r3 STIGDISA STIG VMware vSphere 6.7 UI Tomcat v1r3Unix
GEN000100 - The operating system must be a supported release.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

TCAT-AS-000040 - TLS 1.2 must be used on secured HTTP connectors.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

TCAT-AS-000050 - AccessLogValve must be configured for each application context.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

TCAT-AS-000060 - Default password for keystore must be changed.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION