NGINX Web Server Security. Web Server Security | Security Technical Implementation Guides (STIGs)
NGINX Web Server Security. Web Server Security | Security Technical Implementation Guides (STIGs). Cybersecurity for the People..
V-41620 medium The web server must produce log records containing sufficient information to establish the identity of any user/subject or process associated with an event.
V-41668 medium The web server must use the internal system clock to generate time stamps for log records.
V-41670 medium Web server log files must only be accessible by privileged users.
V-41671 medium The log information from the web server must be protected from unauthorized modification.
V-41672 medium The log information from the web server must be protected from unauthorized deletion.
V-41674 medium The log data and records from the web server must be backed up onto a different system or media.
V-41684 medium Expansion modules must be fully reviewed, tested, and signed before they can exist on a production web server.
V-41693 medium The web server must only contain services and functions necessary for operation.
V-41694 medium The web server must not be a proxy server.
by ProfessorBlackOps – CyberSecurity for the people
linux web server
