{"description": "WebDAV is an extension of the HTTP protocol that provides distributed and\ncollaborative access to web content. If its functionality is unnecessary,\ncomment out the related modules:\n<pre>#LoadModule dav_module modules/mod_dav.so\n#LoadModule dav_fs_module modules/mod_dav_fs.so</pre>\nIf there is a critical need for WebDAV, extra care should be taken in its configuration.\nSince DAV access allows remote clients to manipulate server files, any location on the\nserver that is DAV enabled should be protected by access controls.", "rationale": "Minimizing the number of loadable modules available to the web server, reduces risk\nby limiting the capabilities allowed by the web server.", "severity": "unknown", "references": {}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": null, "ocil": null, "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": null, "platforms": [], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": [], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Disable WebDAV (Distributed Authoring and Versioning)", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/services/http/securing_httpd/httpd_minimize_loadable_modules/httpd_core_modules/httpd_webdav/rule.yml", "template": null}