-
Notifications
You must be signed in to change notification settings - Fork 115
IISServer 8.5 2.5
Eric Jenkins edited this page Mar 16, 2023
·
1 revision
Title: Microsoft IIS 8.5 Server Security Technical Implementation Guide
Version: 2
Release: Release: 5 Benchmark Date: 26 Jan 2023 3.4.0.34222 1.10.0
FileName: U_MS_IIS_8-5_Server_STIG_V2R5_Manual-xccdf.xml
Created: 2/3/2023
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: [email protected].
Total Stig Rule Coverage: 30 of 59 rules are automated; 51%
- High (CAT I): 9 of 13 rules are automated
- Medium (CAT II): 21 of 46 rules are automated
- Low (CAT III): 0 of 0 rules are automated
StigRuleId | Severity | RuleType | DscResource | DuplicateOf |
---|---|---|---|---|
V-214400 | Medium | IisLoggingRule | xWebAdministration | |
V-214401 | Medium | IisLoggingRule | xIISLogging | |
V-214403 | Medium | IisLoggingRule | xIISLogging | |
V-214404 | Medium | IisLoggingRule | xIISLogging | |
V-214413.a | Medium | MimeTypeRule | xIisMimeTypeMapping | |
V-214413.b | Medium | MimeTypeRule | xIisMimeTypeMapping | |
V-214413.c | Medium | MimeTypeRule | xIisMimeTypeMapping | |
V-214413.d | Medium | MimeTypeRule | xIisMimeTypeMapping | |
V-214413.e | Medium | MimeTypeRule | xIisMimeTypeMapping | |
V-214429 | Medium | PermissionRule | NTFSAccessEntry | |
V-214436.a | High | RegistryRule | Registry | |
V-214436.b | High | RegistryRule | Registry | |
V-214436.c | High | RegistryRule | Registry | |
V-214436.d | High | RegistryRule | Registry | |
V-214436.e | High | RegistryRule | Registry | |
V-214436.f | High | RegistryRule | Registry | |
V-214436.g | High | RegistryRule | Registry | |
V-214436.h | High | RegistryRule | Registry | |
V-214436.i | High | RegistryRule | Registry | |
V-214419 | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214420.a | Medium | WebConfigurationPropertyRule | None | V-214419 |
V-214420.b | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214422.a | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214422.b | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214423 | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214425 | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214435 | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214440.a | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214440.b | Medium | WebConfigurationPropertyRule | xWebConfigKeyValue | |
V-214414 | Medium | WindowsFeatureRule | WindowsFeature |
StigRuleId | Severity | RuleType |
---|---|---|
V-214399 | Medium | DocumentRule |
V-214407 | Medium | DocumentRule |
V-214408 | Medium | DocumentRule |
V-214417 | High | DocumentRule |
V-214421 | Medium | DocumentRule |
V-214424 | Medium | DocumentRule |
V-214426 | High | DocumentRule |
V-214428 | Medium | DocumentRule |
V-214430 | Medium | DocumentRule |
V-214431 | Medium | DocumentRule |
V-214432 | Medium | DocumentRule |
V-214434 | Medium | DocumentRule |
V-214437 | Medium | DocumentRule |
V-228573 | Medium | DocumentRule |
V-214402 | Medium | ManualRule |
V-214405 | Medium | ManualRule |
V-214406 | Medium | ManualRule |
V-214409 | Medium | ManualRule |
V-214410 | High | ManualRule |
V-214411 | Medium | ManualRule |
V-214412 | Medium | ManualRule |
V-214415 | Medium | ManualRule |
V-214416 | Medium | ManualRule |
V-214418 | Medium | ManualRule |
V-214427 | Medium | ManualRule |
V-214433 | Medium | ManualRule |
V-214438 | High | ManualRule |
V-214441 | Medium | ManualRule |
V-214442 | Medium | ManualRule |
-
- Adobe-AcrobatPro-2.1
- Adobe-AcrobatReader-1.6
- Adobe-AcrobatReader-2.1
- DotNetFramework-4-2.3
- DotNetFramework-4-2.4
- FireFox-All-5.2
- FireFox-All-6.5
- Google-Chrome-2.8
- Google-Chrome-2.9
- IISServer-10.0-2.10
- IISServer-10.0-2.9
- IISServer-8.5-2.4
- IISServer-8.5-2.5
- IISSite-10.0-2.8
- IISSite-10.0-2.9
- IISSite-8.5-2.7
- IISSite-8.5-2.8
- InternetExplorer-11-2.2
- InternetExplorer-11-2.5
- McAfee-8.8-VirusScan-5.16
- MS-Edge-1.7
- MS-Edge-1.8
- Office-365ProPlus-2.11
- Office-365ProPlus-2.12
- Office-Access2016-1.1
- Office-Excel2013-1.7
- Office-Excel2016-1.2
- Office-OneNote2016-1.2
- Office-Outlook2013-1.12
- Office-Outlook2013-1.13
- Office-Outlook2016-2.2
- Office-Outlook2016-2.3
- Office-PowerPoint2013-1.6
- Office-PowerPoint2016-1.1
- Office-Publisher2016-1.3
- Office-Skype2016-1.1
- Office-System2013-1.9
- Office-System2013-2.1
- Office-System2016-2.2
- Office-System2016-2.3
- Office-Visio2013-1.4
- Office-Word2013-1.6
- Office-Word2016-1.1
- OracleJRE-8-1.5
- OracleJRE-8-2.1
- RHEL-7-3.13
- RHEL-7-3.14
- SqlServer-2012-Database-1.19
- SqlServer-2012-Database-1.20
- SqlServer-2012-Instance-1.19
- SqlServer-2012-Instance-1.20
- SqlServer-2016-Instance-2.11
- SqlServer-2016-Instance-2.12
- Ubuntu-18.04-2.13
- Ubuntu-18.04-2.14
- Vsphere-6.5-2.2
- Vsphere-6.5-2.3
- WindowsClient-10-2.8
- WindowsClient-10-2.9
- WindowsClient-11-1.5
- WindowsClient-11-1.6
- WindowsDefender-All-2.3
- WindowsDefender-All-2.4
- WindowsDnsServer-2012R2-2.4
- WindowsDnsServer-2012R2-2.5
- WindowsFirewall-All-2.1
- WindowsFirewall-All-2.2
- WindowsServer-2012R2-DC-3.3
- WindowsServer-2012R2-DC-3.4
- WindowsServer-2012R2-MS-3.3
- WindowsServer-2012R2-MS-3.4
- WindowsServer-2016-DC-2.7
- WindowsServer-2016-DC-2.8
- WindowsServer-2016-MS-2.7
- WindowsServer-2016-MS-2.8
- WindowsServer-2019-DC-2.8
- WindowsServer-2019-DC-2.9
- WindowsServer-2019-MS-2.8
- WindowsServer-2019-MS-2.9
- WindowsServer-2022-DC-1.4
- WindowsServer-2022-DC-1.5
- WindowsServer-2022-MS-1.4
- WindowsServer-2022-MS-1.5