search cancel

Security Vulnerabilities in /etc/httpd locations on DX NetOps systems


Article ID: 225894


Updated On:


CA Performance Management - Usage and Administration DX NetOps


Security found the security vulnerabilities on CAPM hosts regarding Apache Server and provided recommend remediation steps. Will the recommended steps affect the application?

A Nessus tool scan returned many issues from all DX NetOps Performance Management systems from /etc/httpd/*.

How can these issues be resolved?


All supported DX NetOps Performance Management releases


OS has the httpd and httpd-tools packages installed.


The /etc/httpd/* locations are owned and managed by the Operation System or some other tool installed on the server.

Noting in the DX NetOps Performance Management systems installed, updates, utilizes or requires anything in /etc/httpd/*.

If these items are not required, there would be no impact to DX NetOps Performance Management product operations or functionality if they are removed or disabled.

The best solution is uninstalling the httpd and httpd-tools packages that install those files to prevent their return if/when the OS is upgraded or patched.