Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
References
CCI
CCI-001762
CCI
CCI|CCI-001762
Title
Disable or remove organization-defined functions, ports, protocols, software, and services within the system deemed to be unnecessary and/or nonsecure.
Reference Item Details
Reference:
CCI - DISA Control Correlation Identifier
Category:
2024
Audit Items
View all Reference Audit Items
Name
Plugin
Audit Name
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r1 Middleware
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r1
AS24-W2-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.
Windows
DISA STIG Apache Server 2.4 Windows Site v2r1
CD12-00-004150 - PostgreSQL must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.
Unix
DISA STIG Crunchy Data PostgreSQL OS v3r1
CNTR-R2-000580 Rancher RKE2 runtime must enforce ports, protocols, and services that adhere to the PPSM CAL.
Unix
DISA Rancher Government Solutions RKE2 STIG v2r2
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance
Unix
DISA STIG IBM DB2 v10.5 LUW v2r1 OS Linux
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance
Windows
DISA STIG IBM DB2 v10.5 LUW v2r1 OS Windows
DTBC-0074 - Use of the QUIC protocol must be disabled.
Windows
DISA STIG Google Chrome v2r9
EX13-CA-000130 - Exchange services must be documented and unnecessary services must be removed or disabled.
Windows
DISA Microsoft Exchange 2013 Client Access Server STIG v2r2
EX13-EG-000305 - Exchange services must be documented and unnecessary services must be removed or disabled.
Windows
DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r6
EX13-MB-000300 - Exchange services must be documented and unnecessary services must be removed or disabled.
Windows
DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3
EX16-ED-000610 - Exchange services must be documented and unnecessary services must be removed or disabled.
Windows
DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r5
EX16-MB-000600 - Exchange services must be documented and unnecessary services must be removed or disabled.
Windows
DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6
EX19-MB-000198 - Exchange services must be documented, and unnecessary services must be removed or disabled.
Windows
DISA Microsoft Exchange 2019 Mailbox Server STIG v2r2
IIST-SI-000239 - The IIS 10.0 websites must use ports, protocols, and services according to Ports, Protocols, and Services Management (PPSM) guidelines.
Windows
DISA IIS 10.0 Site v2r10
IIST-SV-000148 - The IIS 10.0 web server must not be running on a system providing any other role.
Windows
DISA IIS 10.0 Server v3r2
IIST-SV-000148 - The IIS 10.0 web server must not be running on a system providing any other role.
Windows
DISA IIS 10.0 Server v2r10
IISW-SI-000239 - The IIS 8.5 websites must utilize ports, protocols, and services according to PPSM guidelines.
Windows
DISA IIS 8.5 Site v2r9
IISW-SV-000148 - The IIS 8.5 web server must not be running on a system providing any other role.
Windows
DISA IIS 8.5 Server v2r7
MADB-10-008100 - MariaDB must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.
MySQLDB
DISA MariaDB Enterprise 10.x v2r2 DB
MD7X-00-008000 The DBMS must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.
MongoDB
DISA MongoDB Enterprise Advanced 7.x STIG v1r1
MYS8-00-009000 - The MySQL Database Server 8.0 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.
MySQLDB
DISA Oracle MySQL 8.0 v2r2 DB
SQL4-00-034200 - SQL Server must disable communication protocols not required for operation.
Windows
DISA STIG SQL Server 2014 Instance OS Audit v2r4
SQL6-D0-011900 - SQL Server must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.
MS_SQLDB
DISA STIG SQL Server 2016 Instance DB Audit v3r2
VCEM-67-000029 - ESX Agent Manager must be configured with the appropriate ports.
Unix
DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4
VCPF-67-000028 - Performance Charts must be configured with the appropriate ports - http
Unix
DISA STIG VMware vSphere 6.7 Perfcharts Tomcat v1r3
VCPF-67-000028 - Performance Charts must be configured with the appropriate ports - https
Unix
DISA STIG VMware vSphere 6.7 Perfcharts Tomcat v1r3
VCPF-70-000031 - Performance Charts must be configured with the appropriate ports.
Unix
DISA STIG VMware vSphere 7.0 Perfcharts Tomcat v1r1
VCPG-70-000008 - VMware Postgres must be configured to use the correct port.
Unix
DISA STIG VMware vSphere 7.0 PostgreSQL v1r2