Skip to content

The Apache Tomcat shutdown port must be disabled.

An XCCDF Rule

Description

<VulnDiscussion>Tomcat uses a port (defaults to 8005) as a shutdown port. Someone could Telnet to the machine using this port and send the default command SHUTDOWN. Tomcat and all web apps would shut down in that case, which is a denial of service attack and would cause an unwanted service interruption.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID
SV-106397r1_rule
Severity
Medium
References
Updated



Remediation - Manual Procedure

Log in to the EMM Suite server.
Browse to Program Files\Isec7 EMM Suite\Tomcat\Conf
Open the server.xml with Notepad.exe
Select Edit >> Find and search for Shutdown.
Change the shutdown to -1