Detections
Analytics

800-53|SI-11a.

Title

ERROR HANDLING

Description

Generates error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries; and

Reference Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

Family: SYSTEM AND INFORMATION INTEGRITY

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.21 UBTU-22-232026UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.22 UBTU-22-232027UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.44 UBTU-22-232140UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.74 APPL-14-002021UnixCIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.113 UBTU-24-700010UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.114 UBTU-24-700020UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.115 UBTU-24-700030UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.132 APPL-14-004001UnixCIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.133 APPL-14-004002UnixCIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.135 APPL-14-004030UnixCIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.136 APPL-14-004040UnixCIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
3.2 Ensure 'debug' is turned offWindowsCIS IIS 8.0 v1.5.1 Level 2
3.2 Ensure 'debug' is turned off - ApplicationsWindowsCIS IIS 7 L2 v1.8.0
3.2 Ensure 'debug' is turned off - DefaultWindowsCIS IIS 7 L2 v1.8.0
3.3 Ensure custom error messages are not offWindowsCIS IIS 8.0 v1.5.1 Level 2
3.3 Ensure Custom Error Messages are not Off - ApplicationsWindowsCIS IIS 7 L2 v1.8.0
3.3 Ensure Custom Error Messages are not Off - DefaultWindowsCIS IIS 7 L2 v1.8.0
3.4 Ensure IIS HTTP detailed errors are hidden from displaying remotelyWindowsCIS IIS 8.0 v1.5.1 Level 1
3.4 Ensure IIS HTTP detailed errors are hidden from displaying remotely - ApplicationsWindowsCIS IIS 7 L1 v1.8.0
3.4 Ensure IIS HTTP detailed errors are hidden from displaying remotely - DefaultWindowsCIS IIS 7 L1 v1.8.0
3.5 Ensure ASP.NET stack tracing is not enabled - ApplicationsWindowsCIS IIS 7 L2 v1.8.0
3.5 Ensure ASP.NET stack tracing is not enabled - DefaultWindowsCIS IIS 7 L2 v1.8.0
7.3 Ensure compilation or scripting of database pages via the PageParserPaths elements is not allowedWindowsCIS Microsoft SharePoint 2016 OS v1.1.0
7.3 Ensure compilation or scripting of database pages via the PageParserPaths elements is not allowedWindowsCIS Microsoft SharePoint 2019 OS v1.0.0
7.4 Ensure the SharePoint CallStack and AllowPageLevelTrace 'SafeMode' parameters are set to false - AllowPageLevelTraceWindowsCIS Microsoft SharePoint 2019 OS v1.0.0
7.4 Ensure the SharePoint CallStack and AllowPageLevelTrace 'SafeMode' parameters are set to false - AllowPageLevelTraceWindowsCIS Microsoft SharePoint 2016 OS v1.1.0
7.4 Ensure the SharePoint CallStack and AllowPageLevelTrace 'SafeMode' parameters are set to false - CallStackWindowsCIS Microsoft SharePoint 2016 OS v1.1.0
7.4 Ensure the SharePoint CallStack and AllowPageLevelTrace 'SafeMode' parameters are set to false - CallStackWindowsCIS Microsoft SharePoint 2019 OS v1.0.0
12 - AutoSupport - Remove Private DataNetapp_APINetApp Security Hardening Guide for ONTAP 9 v1.7.0
13 - Disable stacktrace in response bodyUnixTNS Best Practice JBoss 7 Linux
18.8.22.1.3 Ensure 'Turn off handwriting recognition error reporting' is set to 'Enabled'WindowsCIS Windows 7 Workstation Level 2 v3.2.0
18.8.22.1.3 Ensure 'Turn off handwriting recognition error reporting' is set to 'Enabled'WindowsCIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0
18.8.22.1.14 Ensure 'Turn off Windows Error Reporting' is set to 'Enabled'WindowsCIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0
18.8.22.1.14 Ensure 'Turn off Windows Error Reporting' is set to 'Enabled'WindowsCIS Windows 7 Workstation Level 2 v3.2.0
APPL-14-002021 - The macOS system must disable sending diagnostic and usage data to Apple.UnixDISA Apple macOS 14 Sonoma STIG v2r4
APPL-14-004001 - The macOS system must configure Apple System Log files to be owned by root and group to wheel.UnixDISA Apple macOS 14 Sonoma STIG v2r4
APPL-14-004002 - The macOS system must configure Apple System Log files to mode 640 or less permissive.UnixDISA Apple macOS 14 Sonoma STIG v2r4
APPL-14-004030 - The macOS system must configure system log files to be owned by root and group to wheel.UnixDISA Apple macOS 14 Sonoma STIG v2r4
APPL-14-004040 - The macOS system must configure system log files to mode 640 or less permissive.UnixDISA Apple macOS 14 Sonoma STIG v2r4
APPL-15-002021 - The macOS system must disable sending diagnostic and usage data to Apple.UnixDISA Apple macOS 15 Sequoia STIG v1r5
APPL-15-004001 - The macOS system must configure Apple System Log (ASL) files owned by root and group to wheel.UnixDISA Apple macOS 15 Sequoia STIG v1r5
APPL-15-004002 - The macOS system must configure Apple System Log (ASL) files to mode 640 or less permissive.UnixDISA Apple macOS 15 Sequoia STIG v1r5
APPL-15-004030 - The macOS system must configure system log files owned by root and group to wheel.UnixDISA Apple macOS 15 Sequoia STIG v1r5
APPL-15-004040 - The macOS system must configure system log files to mode 640 or less permissive.UnixDISA Apple macOS 15 Sequoia STIG v1r5
APPL-26-002021 - The macOS system must disable sending diagnostic and usage data to Apple.UnixDISA Apple macOS 26 Tahoe STIG v1r1
APPL-26-004001 - The macOS system must configure Apple System Log (ASL) files owned by root and group to wheel.UnixDISA Apple macOS 26 Tahoe STIG v1r1
APPL-26-004002 - The macOS system must configure Apple System Log (ASL) files to mode 640 or less permissive.UnixDISA Apple macOS 26 Tahoe STIG v1r1
APPL-26-004030 - The macOS system must configure system log files owned by root and group to wheel.UnixDISA Apple macOS 26 Tahoe STIG v1r1
APPL-26-004040 - The macOS system must configure system log files to mode 640 or less permissive.UnixDISA Apple macOS 26 Tahoe STIG v1r1
AS24-U1-000620 - Warning and error messages displayed to clients must be modified to minimize the identity of the Apache web server, patches, loaded modules, and directory paths.UnixDISA STIG Apache Server 2.4 Unix Server v3r2