STIGQter STIGQter: STIG Summary: APACHE 2.2 Server for UNIX Security Technical Implementation Guide Version: 1 Release: 11 Benchmark Date: 25 Jan 2019:

The score board file must be properly secured.

DISA Rule

SV-33223r2_rule

Vulnerability Number

V-26322

Group Title

WA00535

Rule Version

WA00535 A22

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

The scoreboard file is created when the server starts, and is deleted when it shuts down, set the permissions during the creation of the file.

Check Contents

To determine the location of the file enter the following command:

find / -name ScoreBoard.

To view the permissions on the file enter the following command:

ls -lL /path/of/ScoreBoard.

If the permissions on the file are not set to 644 or is configured to be less restrictive, this is a finding.

Vulnerability Number

V-26322

Documentable

False

Rule Version

WA00535 A22

Severity Override Guidance

To determine the location of the file enter the following command:

find / -name ScoreBoard.

To view the permissions on the file enter the following command:

ls -lL /path/of/ScoreBoard.

If the permissions on the file are not set to 644 or is configured to be less restrictive, this is a finding.

Check Content Reference

M

Responsibility

Web Administrator

Target Key

158

Comments