Security found the security vulnerabilities on CAPM hosts regarding Apache Server and provided recommend remediation steps. Will the recommended steps affect the application?
A Nessus tool scan returned many issues from all DX NetOps Performance Management systems from /etc/httpd/*.
How can these issues be resolved?
OS has the httpd and httpd-tools packages installed.
All supported DX NetOps Performance Management releases
The /etc/httpd/* locations are owned and managed by the Operation System or some other tool installed on the server.
Noting in the DX NetOps Performance Management systems installed, updates, utilizes or requires anything in /etc/httpd/*.
If these items are not required, there would be no impact to DX NetOps Performance Management product operations or functionality if they are removed or disabled.
The best solution is uninstalling the httpd and httpd-tools packages that install those files to prevent their return if/when the OS is upgraded or patched.