UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

VMware vSphere 6.7 EAM Tomcat Security Technical Implementation Guide


Overview

Date Finding Count (30)
2021-04-15 CAT I (High): 0 CAT II (Med): 30 CAT III (Low): 0
STIG Description
This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Available Profiles



Findings (MAC I - Mission Critical Sensitive)

Finding ID Severity Title
V-239388 Medium ESX Agent Manager directory tree must have permissions in an "out-of-the box" state.
V-239389 Medium ESX Agent Manager must fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.
V-239382 Medium ESX Agent Manager must be configured to limit access to internal packages.
V-239383 Medium ESX Agent Manager must have Multipurpose Internet Mail Extensions (MIMEs) that invoke operating system shell programs disabled.
V-239380 Medium ESX Agent Manager must only run one webapp.
V-239381 Medium ESX Agent Manager must not be configured with unsupported realms.
V-239386 Medium ESX Agent Manager must be configured with memory leak protection.
V-239387 Medium ESX Agent Manager must not have any symbolic links in the web content directory tree.
V-239384 Medium ESX Agent Manager must have mappings set for Java servlet pages.
V-239385 Medium ESX Agent Manager must not have the Web Distributed Authoring (WebDAV) servlet installed.
V-239377 Medium ESX Agent Manager must generate log records for system startup and shutdown.
V-239376 Medium ESX Agent Manager must record user access in a format that enables monitoring of remote access.
V-239401 Medium ESX Agent Manager must disable the shutdown port.
V-239379 Medium ESX Agent Manager application files must be verified for their integrity.
V-239373 Medium ESX Agent Manager must limit the number of concurrent connections permitted.
V-239372 Medium ESX Agent Manager must limit the amount of time that each TCP connection is kept alive.
V-239378 Medium ESX Agent Manager log files must only be modifiable by privileged users.
V-239399 Medium ESX Agent Manager must set the secure flag for cookies.
V-239398 Medium Rsyslog must be configured to monitor and ship ESX Agent Manager log files.
V-239375 Medium ESX Agent Manager must protect cookies from XSS.
V-239374 Medium ESX Agent Manager must limit the maximum size of a POST request.
V-239395 Medium ESX Agent Manager must be configured to show error pages with minimal information.
V-239394 Medium ESX Agent Manager must not show directory listings.
V-239397 Medium ESX Agent Manager must have the debug option turned off.
V-239396 Medium ESX Agent Manager must not enable support for TRACE requests.
V-239391 Medium ESX Agent Manager must set "URIEncoding" to UTF-8.
V-239390 Medium ESX Agent Manager must limit the number of allowed connections.
V-239393 Medium ESX Agent Manager must set the welcome-file node to a default web page.
V-239392 Medium ESX Agent Manager must use the "setCharacterEncodingFilter" filter.
V-239400 Medium ESX Agent Manager must be configured with the appropriate ports.