STIGQter: STIG Summary: APACHE 2.2 Server for Windows Security Technical Implementation Guide Version: 1 Release: 13 Benchmark Date: 25 Jan 2019: STIGQter: STIG Summary: APACHE 2.2 Server for Windows Security Technical Implementation Guide Version: 1 Release: 13 Benchmark Date: 25 Jan 2019:SV-33173r3_rule
V-26299
WA00520
WA00520 W22
CAT II
10
Disable all proxy modules by adding a "#" in front of them within the httpd.conf file, and restarting the Apache service.
Note: If the Apache web server is only performing in a proxy server role and does not host any websites nor support any applications, this check is Not Applicable.
Open a command prompt window.
Navigate to the “bin” directory (in many cases this may be [Drive Letter]:\[directory path]\Apache Software Foundation\Apache2.2\bin>).
Enter the following command: httpd –M <enter>
Note: Some installations may be running under apache.exe. In such case, validate by running the following command: apache -M <enter>
This will provide a list of all loaded modules. If any of the following modules are found this is a finding: proxy_module, proxy_ajp_module, proxy_balancer_module, proxy_ftp_module, proxy_http_module, or proxy_connect_module.
V-26299
False
WA00520 W22
Note: If the Apache web server is only performing in a proxy server role and does not host any websites nor support any applications, this check is Not Applicable.
Open a command prompt window.
Navigate to the “bin” directory (in many cases this may be [Drive Letter]:\[directory path]\Apache Software Foundation\Apache2.2\bin>).
Enter the following command: httpd –M <enter>
Note: Some installations may be running under apache.exe. In such case, validate by running the following command: apache -M <enter>
This will provide a list of all loaded modules. If any of the following modules are found this is a finding: proxy_module, proxy_ajp_module, proxy_balancer_module, proxy_ftp_module, proxy_http_module, or proxy_connect_module.
M
Web Administrator
158