V-206433
SV-206433r961620_rule
CAT II
The web server must be tuned to handle the operational requirements of the hosted application.
From: Web Server Security Requirements Guide (V4R4)
Description
<VulnDiscussion>A Denial of Service (DoS) can occur when the web server is so overwhelmed that it can no longer respond to additional requests. A web server not properly tuned may become overwhelmed and cause a DoS condition even with expected traffic from users. To avoid a DoS, the web server must be tuned to handle the expected traffic for the hosted applications.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
Check Procedure
Review the web server documentation and deployed configuration to determine what parameters are set to tune the web server.
Review the hosted applications along with risk analysis documents to determine the expected user traffic.
If the web server has not been tuned to avoid a DoS, this is a finding.
Fix Text
Analyze the expected user traffic for the hosted applications.
Tune the web server to avoid a DoS condition under normal user traffic to the hosted applications.
CCI Reference
CCI-002385- Created
- 2026-04-07 20:08:40
- Last Updated
- 2026-04-07 20:08:40