- WA000-WI080 IIS6 - The IIS Internet Printing Protocol must be disabled.
- WA000-WI100 IIS6 - The File System Object component, if not required, must be disabled. - 'Scripting.FileSystemObject Check'
- WA000-WI100 IIS6 - The File System Object component, if not required, must be disabled. - '{0D43FE01-F093-11CF-8940-00A0C9054228} Check'
- WA000-WI110 IIS6 - The command shell options must be disabled.
- WA000-WI6080 IIS6 - The AllowRestrictedChars registry key must be disabled.
- WA000-WI6082 IIS6 - The EnableNonUTF8 registry key must be disabled.
- WA000-WI6084 IIS6 - The FavorUTF8 registry key must be set properly.
- WA000-WI6086 IIS6 - The MaxFieldLength registry entry must be set properly.
- WA000-WI6088 IIS6 - The MaxRequestBytes registry entry must be set properly.
- WA000-WI6090 IIS6 - The UrlSegmentMaxLength registry entry must be set properly.
- WA000-WI6092 IIS6 - The PercentUAllowed registry entry must be set properly.
- WA000-WI6094 IIS6 - The UriMaxUriBytes registry entry must be set properly.
- WA000-WI6096 IIS6 - The UrlSegmentMaxCount registry entry must be set properly.
- WA060 IIS6 - A public web server, if hosted on the NIPRNet, must be isolated in an accredited DoD DMZ Extension.
- WA070 IIS6 - A private web server must be located on a separate controlled access subnet.
- WA120 IIS6 - Administrative users and groups with access privilege to the web server must be documented.
- WA140 IIS6 - Web server content and configuration files must be part of a routine backup program.
- WA155 IIS6 - Classified web servers must be afforded physical security commensurate with the classification of its content.
- WA230 IIS6 - The site software used with the web server must have all applicable security patches applied and documented.
- WG040 IIS6 - Public web server resources must not be shared with private assets.
- WG050 IIS6 - The web server service password(s) must be entrusted to the SA or Web Manager.
- WG060 IIS6 - The service account ID used to run the web service must have its password changed at least annually.
- WG080 IIS6 - A compiler must not be installed on a production web server. - 'javac.exe search'
- WG080 IIS6 - A compiler must not be installed on a production web server. - 'Lcc-win32.exe search'
- WG080 IIS6 - A compiler must not be installed on a production web server. - 'msc.exe search'
- WG080 IIS6 - A compiler must not be installed on a production web server. - 'msvc.exe search'
- WG080 IIS6 - A compiler must not be installed on a production web server. - 'Python.exe search'
- WG130 IIS6 - Programs and features not necessary for operations must be removed.
- WG190 IIS6 - The web server must use a vendor-supported version of the web server software.
- WG195 IIS6 - Anonymous access accounts must be restricted.
