WebDAV Enabled
Description
WebDAV (Web Distributed Authoring and Versioning) is an HTTP protocol extension that enables remote file management capabilities on web servers. When enabled, it allows users to create, modify, delete, and move files on the server through HTTP methods such as PUT, DELETE, MOVE, and COPY. While legitimate for content collaboration, its presence increases the attack surface of a web application.
Remediation
If WebDAV functionality is not required for business operations, disable it entirely on the web server. For Apache, remove or comment out the DAV modules in the configuration. For IIS, remove the WebDAV feature through Server Manager or disable it in the site's Handler Mappings. If WebDAV must remain enabled, implement the following controls: (1) Restrict access using strong authentication mechanisms and IP whitelisting, (2) Limit HTTP methods to only those required (disable PUT, DELETE if unnecessary), (3) Apply strict file type restrictions to prevent executable uploads, (4) Enable detailed logging and monitoring of all WebDAV activities, and (5) Ensure WebDAV is only accessible over HTTPS with valid certificates. Regularly audit WebDAV permissions and review access logs for suspicious activity.