STIGQter STIGQter: STIG Summary: Apache Server 2.4 Windows Server Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The Apache web server must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT) with a minimum granularity of one second.

DISA Rule

SV-214351r505936_rule

Vulnerability Number

V-214351

Group Title

SRG-APP-000375-WSR-000171

Rule Version

AS24-W1-000760

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

In a command line, navigate to "<'INSTALLED PATH'>\bin". Run "httpd -M" to view a list of installed modules.

If "log_config_module" is not listed, enable this module.

In a command line, navigate to "<'INSTALLED PATH'>\bin". Determine the location of the "httpd.conf" file by running the following command:

httpd -V

Review the "HTTPD_ROOT" path.

Navigate to the "HTTPD_ROOT"/conf directory.

Edit the "httpd.conf" file.

Determine if the "LogFormat" directive exists. If it does not exist, ensure the "LogFormat" line contains the "%t" flag.

Check Contents

Review the web server documentation and configuration to determine the time stamp format for log data.

In a command line, navigate to "<'INSTALLED PATH'>\bin". Run "httpd -M" to view a list of installed modules.

If "log_config_module" is not listed, this is a finding.

In a command line, navigate to "<'INSTALLED PATH'>\bin". Determine the location of the "httpd.conf" file by running the following command:

httpd -V

Review the "HTTPD_ROOT" path.

Navigate to the "HTTPD_ROOT"/conf directory.

Edit the "httpd.conf" file.

Verify the "LogFormat" directive exists.

If it does not exist, this is a finding.

Verify the "LogFormat" line contains the "%t" flag.

If "%t" flag is not present, time is not mapped to UTC or GMT time, and this is a finding.

Vulnerability Number

V-214351

Documentable

False

Rule Version

AS24-W1-000760

Severity Override Guidance

Review the web server documentation and configuration to determine the time stamp format for log data.

In a command line, navigate to "<'INSTALLED PATH'>\bin". Run "httpd -M" to view a list of installed modules.

If "log_config_module" is not listed, this is a finding.

In a command line, navigate to "<'INSTALLED PATH'>\bin". Determine the location of the "httpd.conf" file by running the following command:

httpd -V

Review the "HTTPD_ROOT" path.

Navigate to the "HTTPD_ROOT"/conf directory.

Edit the "httpd.conf" file.

Verify the "LogFormat" directive exists.

If it does not exist, this is a finding.

Verify the "LogFormat" line contains the "%t" flag.

If "%t" flag is not present, time is not mapped to UTC or GMT time, and this is a finding.

Check Content Reference

M

Target Key

3998

Comments