Detections
Analytics

Item Search

NameAudit NamePluginCategory
Buffer overflow protection should be configured 'LimitRequestBody'TNS IBM HTTP Server Best PracticeWindows

SYSTEM AND COMMUNICATIONS PROTECTION

CGI-BIN directory should be disabled. 'Addmodule mod_cgi.c'TNS IBM HTTP Server Best PracticeUnix

CONFIGURATION MANAGEMENT

CGI-BIN directory should be disabled. 'AddModule mod_env.c'TNS IBM HTTP Server Best PracticeWindows

CONFIGURATION MANAGEMENT

CGI-BIN directory should be disabled. 'LoadModule env_module'TNS IBM HTTP Server Best PracticeWindows

CONFIGURATION MANAGEMENT

CGI-BIN directory should be disabled. 'ScriptAlias'TNS IBM HTTP Server Best PracticeUnix

CONFIGURATION MANAGEMENT

CGI-BIN directory should be disabled. 'ScriptAlias'TNS IBM HTTP Server Best PracticeWindows

CONFIGURATION MANAGEMENT

Configuration files should be secured against unauthorized access.TNS IBM HTTP Server Best PracticeWindows
DTBI760-IE11 - Browser must retain history on exit.DISA STIG IE 11 v2r5Windows

AUDIT AND ACCOUNTABILITY

HTTP TRACE method should be disabled. 'RewriteCond'TNS IBM HTTP Server Best PracticeUnix

CONFIGURATION MANAGEMENT

HTTP TRACE method should be disabled. 'RewriteEngine'TNS IBM HTTP Server Best PracticeUnix

CONFIGURATION MANAGEMENT

HTTP TRACE method should be disabled. 'RewriteLogLevel'TNS IBM HTTP Server Best PracticeWindows

AUDIT AND ACCOUNTABILITY

HTTP TRACE method should be disabled. 'RewriteRule'TNS IBM HTTP Server Best PracticeUnix

CONFIGURATION MANAGEMENT

HTTP TRACE method should be disabled. 'TraceEnable'TNS IBM HTTP Server Best PracticeWindows

CONFIGURATION MANAGEMENT

Huawei: Disable FTP IPV4TNS Huawei VRP Best Practice AuditHuawei

CONFIGURATION MANAGEMENT

Huawei: Disable FTP IPV6TNS Huawei VRP Best Practice AuditHuawei

CONFIGURATION MANAGEMENT

Huawei: Disable Telnet on IPV6TNS Huawei VRP Best Practice AuditHuawei

CONFIGURATION MANAGEMENT

Huawei: Require service timestampTNS Huawei VRP Best Practice AuditHuawei

AUDIT AND ACCOUNTABILITY

Huawei: SSH Max Retries <= 3TNS Huawei VRP Best Practice AuditHuawei

ACCESS CONTROL

Huawei: User Interfaces are AuthenticatedTNS Huawei VRP Best Practice AuditHuawei

IDENTIFICATION AND AUTHENTICATION

Huawei: User Interfaces Configured Inbound SSHTNS Huawei VRP Best Practice AuditHuawei

CONFIGURATION MANAGEMENT

Keep Alive setting parameter value should be appropriately configured.TNS IBM HTTP Server Best PracticeUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Latest Patches/Fixes should be installedTNS IBM HTTP Server Best PracticeWindows

SYSTEM AND INFORMATION INTEGRITY

Logging Directives should be restricted to authorized users. - 'CustomLog logs/access_log combined'TNS IBM HTTP Server Best PracticeUnix

AUDIT AND ACCOUNTABILITY

MaxClients parameter value should be configured to appropriate value.TNS IBM HTTP Server Best PracticeUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Non-Essential modules should be disabled. 'mod_dav'TNS IBM HTTP Server Best PracticeUnix

CONFIGURATION MANAGEMENT

OpenStack Compute - strict permissions set for Compute configuration files - /etc/nova/rootwrap.confTNS OpenStack Nova/Compute Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Compute - user/group ownership of config files set to root/nova - /etc/nova/api-paste.iniTNS OpenStack Nova/Compute Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Horizon - CSRF_COOKIE_SECURE parameter set to TrueTNS OpenStack Dashboard/Horizon Security GuideUnix

SYSTEM AND COMMUNICATIONS PROTECTION

OpenStack Horizon - USE_SSL parameter set to TrueTNS OpenStack Dashboard/Horizon Security GuideUnix

SYSTEM AND COMMUNICATIONS PROTECTION

OpenStack Horizon - user/group of config files set to root/horizon - /etc/openstack-dashboard/local_settings.pyTNS OpenStack Dashboard/Horizon Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Identity - Identity uses strong hashing algorithms for PKI tokensTNS OpenStack Keystone/Identity Security GuideUnix

SYSTEM AND COMMUNICATIONS PROTECTION

OpenStack Identity - strict permissions set for Identity configuration files - /etc/keystone/keystone-paste.iniTNS OpenStack Keystone/Identity Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Identity - strict permissions set for Identity configuration files - /etc/keystone/ssl/certs/ca.pemTNS OpenStack Keystone/Identity Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Identity - user/group ownership of config files set to keystone - /etc/keystone/keystone-paste.iniTNS OpenStack Keystone/Identity Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Identity - user/group ownership of config files set to keystone - /etc/keystone/policy.jsonTNS OpenStack Keystone/Identity Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Identity - user/group ownership of config files set to keystone - /etc/keystone/ssl/certs/signing_cert.pemTNS OpenStack Keystone/Identity Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Networking - secure protocol used for authenticationTNS OpenStack Neutron/Networking Security GuideUnix
OpenStack Networking - user/group ownership of config files set to root/neutron - /etc/neutron/policy.jsonTNS OpenStack Neutron/Networking Security GuideUnix

CONFIGURATION MANAGEMENT

OpenStack Networking - user/group ownership of config files set to root/neutron - /etc/neutron/rootwrap.confTNS OpenStack Neutron/Networking Security GuideUnix

CONFIGURATION MANAGEMENT

Salesforce.com : Administrator Access - 'No System Administrator accounts have been created since the last scan'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com

ACCESS CONTROL

Salesforce.com : Administrator Access - 'No System Administrator accounts have been modified since the last scan'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com

ACCESS CONTROL

Salesforce.com : AuthConfig - 'Auth Providers = Facebook Execution User ID'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Error URL'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Error URL'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Send Client Credentials in Header'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Token Endpoint URL'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com
SalesForce.com : User Permissions - 'Review Active System Administrators'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com

ACCESS CONTROL