Details
The jdk_64_path parameter specifies the 64-bit Software Developer’s Kit (SDK) for Java directory for the DB2 Administration Server. It is recommended that the location pointed to by this parameter contain a current version of the JDK and be secured.
Maintaining JDK currency will ensure known exploitable conditions are mitigated. Ensuring that the location of the JDK is secure will help prevent malicious entities from compromising the integrity of Java runtime and therefore the administrative facilities of the DB server.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance. If JDK_64_PATH variable was not set, to a file path, the permissions could be supplied.
Solution
1. Attach to the DB2 instance.
db2 => attach to $DB2INSTANCE
2. Run the following command from the DB2 command window:
db2 => update database manager configuration using jdk_64_path
Default Value:
The default value for jdk_64_path is the default install java path.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.