The Apache web server must be tuned to handle the operational requirements of the hosted application.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-214354 | AS24-W1-000830 | SV-214354r1067792_rule | CCI-002385 | medium |
| Description | ||||
| A denial of service (DoS) can occur when the Apache web server is so overwhelmed that it can no longer respond to additional requests. A web server not properly tuned may become overwhelmed and cause a DoS condition even with expected traffic from users. To avoid a DoS, the Apache web server must be tuned to handle the expected traffic for the hosted applications. | ||||
| STIG | Date | |||
| Apache Server 2.4 Windows Server Security Technical Implementation Guide | 2025-02-12 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
SC-5
1.00
- DISA · 3 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-002385
1.00
- DISA · 3 · disa_xccdf · related
Details
Check Text (C-214354r1067792_chk)
Verify the "Timeout" directive is specified in the Apache configuration files to have a value of "60" seconds or less.
If the "Timeout" directive is not configured or set for more than "60" seconds, this is a finding.
Fix Text (F-15564r1067791_fix)
Add or modify the "Timeout" directive in the Apache configuration to have a value of "60" seconds or less.
"Timeout 60"
Restart the Apache service.