III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
The WebSphere Application Server must generate log records when successful/unsuccessful attempts to access subject privileges occur.
<VulnDiscussion>Accessing a subject's privileges can be used to elevate a lower-privileged subject's privileges temporarily in order to cause...Rule Low Severity -
SRG-APP-000357-AS-000038
<GroupDescription></GroupDescription>Group -
The WebSphere Application Server must allocate JVM log record storage capacity in accordance with organization-defined log record storage requirements.
<VulnDiscussion>JVM logs are logs used to store application and runtime related events, rather than audit related events. They are mainly use...Rule Medium Severity -
SRG-APP-000357-AS-000038
<GroupDescription></GroupDescription>Group -
The WebSphere Application Server must allocate audit log record storage capacity in accordance with organization-defined log record storage requirements.
<VulnDiscussion>The proper management of log records not only dictates proper archiving processes and procedures be established, it also requ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.