Skip to content

No profile (default benchmark)

Rules and Groups employed by this XCCDF Profile

  • The WebSphere Application Server must be configured to sign log information.

    <VulnDiscussion>Protection of log records is of critical importance. Encrypting log records provides a level of protection that does not rely...
    Rule Medium Severity
  • SRG-APP-000141-AS-000095

    <GroupDescription></GroupDescription>
    Group
  • The WebSphere Application Server process must not be started from the command line with the -password option.

    &lt;VulnDiscussion&gt;The use of the -password option to launch a WebSphere process from the command line can result in a security exposure. Passwo...
    Rule Medium Severity
  • SRG-APP-000141-AS-000095

    <GroupDescription></GroupDescription>
    Group
  • The WebSphere Application Server files must be owned by the non-root WebSphere user ID.

    &lt;VulnDiscussion&gt;Having files owned by the root or administrator user is an indication that the WebSphere processes are being run with escalat...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules