Security Vulnerabilities in /etc/httpd locations on DX NetOps systems

book

Article ID: 225894

calendar_today

Updated On:

Products

CA Performance Management - Usage and Administration DX NetOps

Issue/Introduction

Security found the security vulnerabilities on CAPM hosts regarding Apache Server and provided recommend remediation steps. Will the recommended steps affect the application?

A Nessus tool scan returned many issues from all DX NetOps Performance Management systems from /etc/httpd/*.

How can these issues be resolved?

Cause

OS has the httpd and httpd-tools packages installed.

Environment

All supported DX NetOps Performance Management releases

Resolution

The /etc/httpd/* locations are owned and managed by the Operation System or some other tool installed on the server.

Noting in the DX NetOps Performance Management systems installed, updates, utilizes or requires anything in /etc/httpd/*.

If these items are not required, there would be no impact to DX NetOps Performance Management product operations or functionality if they are removed or disabled.

The best solution is uninstalling the httpd and httpd-tools packages that install those files to prevent their return if/when the OS is upgraded or patched.