AS24-W1-000430 - Apache web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts. | DISA STIG Apache Server 2.4 Windows Server v2r3 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
AS24-W1-000450 - The Apache web server must separate the hosted applications from hosted Apache web server management functionality. | DISA STIG Apache Server 2.4 Windows Server v2r3 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
AS24-W2-000430 - Apache web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts. | DISA STIG Apache Server 2.4 Windows Site v2r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
AS24-W2-000450 - The Apache web server must separate the hosted applications from hosted Apache web server management functionality. | DISA STIG Apache Server 2.4 Windows Site v2r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-171 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-171 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
CNTR-K8-001360 - Kubernetes must separate user functionality. | DISA STIG Kubernetes v1r11 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
IISW-SV-000131 - IIS 8.5 Web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts. | DISA IIS 8.5 Server v2r7 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
IISW-SV-000132 - The IIS 8.5 web server must separate the hosted applications from hosted web server management functionality. | DISA IIS 8.5 Server v2r7 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
MADB-10-004600 - MariaDB must separate user functionality (including user interface services) from database management functionality. | DISA MariaDB Enterprise 10.x v1r3 DB | MySQLDB | SYSTEM AND COMMUNICATIONS PROTECTION |
MD4X-00-000700 - MongoDB must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users). | DISA STIG MongoDB Enterprise Advanced 4.x v1r2 DB | MongoDB | SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-171 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
MYS8-00-006400 - The MySQL Database Server 8.0 must separate user functionality (including user interface services) from database management functionality. | DISA Oracle MySQL 8.0 v1r5 DB | MySQLDB | SYSTEM AND COMMUNICATIONS PROTECTION |
RHEL-09-213010 - RHEL 9 must restrict access to the kernel message buffer. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
RHEL-09-213015 - RHEL 9 must prevent kernel profiling by nonprivileged users. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
RHEL-09-213075 - RHEL 9 must disable access to network bpf system call from nonprivileged processes. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
RHEL-09-213080 - RHEL 9 must restrict usage of ptrace to descendant processes. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
VCEM-67-000017 - ESX Agent Manager directory tree must have permissions in an 'out-of-the box' state - out-of-the box state. | DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
VCEM-70-000017 - ESX Agent Manager directory tree must have permissions in an out-of-the-box state - out-of-the box state. | DISA STIG VMware vSphere 7.0 EAM Tomcat v1r2 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
VCLD-67-000026 - VAMI must restrict access to the web root. | DISA STIG VMware vSphere 6.7 VAMI-lighttpd v1r3 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
VCLU-70-000017 - Lookup Service directory tree must have permissions in an out-of-the-box state - out-of-the box state. | DISA STIG VMware vSphere 7.0 Lookup Service v1r2 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
VCST-70-000017 - The Security Token Service directory tree must have permissions in an out-of-the-box state. | DISA STIG VMware vSphere 7.0 STS Tomcat v1r2 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
VCTR-67-000005 - The vCenter Server users must have the correct roles assigned. | DISA STIG VMware vSphere 6.7 vCenter v1r4 | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
VCUI-67-000016 - vSphere UI directory tree must have permissions in an 'out-of-the-box' state - out-of-the-box state. | DISA STIG VMware vSphere 6.7 UI Tomcat v1r3 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
VCWN-06-000005 - The vCenter Server users must have the correct roles assigned. | DISA STIG VMware vSphere vCenter 6.x v1r4 | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
VCWN-65-000005 - The vCenter Server for Windows users must have the correct roles assigned. | DISA STIG VMware vSphere vCenter 6.5 v2r3 | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
WBLC-08-000222 - Oracle WebLogic must separate hosted application functionality from Oracle WebLogic management functionality. | Oracle WebLogic Server 12c Linux v2r1 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
WBLC-08-000222 - Oracle WebLogic must separate hosted application functionality from Oracle WebLogic management functionality. | Oracle WebLogic Server 12c Linux v2r1 Middleware | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
WBSP-AS-001390 - The WebSphere Application Servers must not be in the DMZ. | DISA IBM WebSphere Traditional 9 Windows STIG v1r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
WBSP-AS-001390 - The WebSphere Application Servers must not be in the DMZ. | DISA IBM WebSphere Traditional 9 STIG v1r1 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
WBSP-AS-001390 - The WebSphere Application Servers must not be in the DMZ. | DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
WPAW-00-001500 - In a Windows PAW, administrator accounts used for maintaining the PAW must be separate from administrative accounts used to manage high-value IT resources. | DISA MS Windows Privileged Access Workstation v2r3 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |