UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

OHS must have the IfModule cgid_module directive disabled.


Overview

Finding ID Version Rule ID IA Controls Severity
V-221364 OH12-1X-000117 SV-221364r414777_rule Low
Description
A web server can provide many features, services, and processes. Some of these may be deemed unnecessary or too unsecure to run on a production DoD system. The web server must provide the capability to disable, uninstall, or deactivate functionality and services that are deemed to be non-essential to the web server mission or can adversely impact server performance.
STIG Date
Oracle HTTP Server 12.1.3 Security Technical Implementation Guide 2021-12-29

Details

Check Text ( C-23079r414775_chk )
1. Open $DOMAIN_HOME/config/fmwconfig/components/OHS//httpd.conf and every .conf file (e.g., ssl.conf) included in it with an editor that contains a "" directive.

2. Search for the "" directive at the OHS server, virtual host, and directory configuration scope.

3. If the directive and any directives that it may contain exist and are not commented out, this is a finding.
Fix Text (F-23068r414776_fix)
1. Open $DOMAIN_HOME/config/fmwconfig/components/OHS//httpd.conf and every .conf file (e.g., ssl.conf) included in it with an editor that contains a "" directive.

2. Search for the "" directive at the OHS server, virtual host, and directory configuration scopes.

3. Comment out the "" directive and any directives it may contain.