I - Mission Critical Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000015-AS-000010
Group -
HTTPS must be enabled for JBoss web interfaces.
Encryption is critical for protection of web-based traffic. If encryption is not being used to protect the application server's web connectors, malicious users may gain the ability to read or modif...Rule Medium Severity -
SRG-APP-000033-AS-000024
Group -
Java permissions must be set for hosted applications.
The Java Security Manager is a java class that manages the external boundary of the Java Virtual Machine (JVM) sandbox, controlling how code executing within the JVM can interact with resources out...Rule High Severity -
SRG-APP-000033-AS-000024
Group -
The Java Security Manager must be enabled for the JBoss application server.
The Java Security Manager is a java class that manages the external boundary of the Java Virtual Machine (JVM) sandbox, controlling how code executing within the JVM can interact with resources out...Rule High Severity -
SRG-APP-000033-AS-000024
Group -
The JBoss server must be configured with Role Based Access Controls.
By default, the JBoss server is not configured to utilize role based access controls (RBAC). RBAC provides the capability to restrict user access to their designated management role, thereby limit...Rule High Severity -
SRG-APP-000033-AS-000024
Group -
Users in JBoss Management Security Realms must be in the appropriate role.
Security realms are a series of mappings between users and passwords and users and roles. There are 2 JBoss security realms provided by default; they are "management realm" and "application realm"...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules