{"description": "The web server is responsible for providing access to\ncontent via the HTTP protocol. Web servers represent a significant\nsecurity risk because:\n<br /><br />\n<ul>\n<li>The HTTP port is commonly probed by malicious sources</li>\n<li>Web server software is very complex, and includes a long\nhistory of vulnerabilities</li>\n<li>The HTTP protocol is unencrypted and vulnerable to passive\nmonitoring</li>\n</ul>\n<br /><br />\nThe system's default web server software is Apache 2 and is\nprovided in the RPM package <tt>httpd</tt>.", "warnings": [], "requires": [], "conflicts": [], "values": {}, "groups": ["disabling_httpd", "disabling_nginx", "installing_httpd", "securing_httpd"], "rules": {}, "platform": "", "platforms": [], "inherited_platforms": [], "cpe_platform_names": [], "title": "Web Server", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/services/http/group.yml"}