From Application Server Security Requirements Guide
Part of SRG-APP-000390-AS-000254
Associated with: CCI-002039
Without re-authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity.
Review the application server documentation and configuration to determine if the application server requires devices to re-authenticate when organization-defined circumstances or situations require re-authentication. If the application server does not require a device to re-authenticate, this is a finding.
Configure the application server to require devices to re-authenticate when organization-defined circumstances or situations require re-authentication.
Lavender hyperlinks in small type off to the right (of CSS
class id
, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle
or
Accept: application/rdf+xml
.
Powered by sagemincer