Restrict access to $CATALINA_HOME
Details $CATALINA_HOME is the environment variable which holds the path to the root Tomcat directory. It is important to protect...
- Home
- Security Hardening
- CIS Apache Tomcat 8 L1 V1.1.0 Middleware
CIS Apache Tomcat 8 L1 V1.1.0 Middleware
Restrict access to Tomcat binaries directory
Details The Tomcat $CATALINA_HOME/bin directory contains executes that are part of the Tomcat run-time. It is recommended that the ownership...Restrict access to Tomcat catalina.policy
Details The catalina.policy file is used to configure security policies for Tomcat. It is recommended that access to this file...Restrict access to Tomcat catalina.properties
Details catalina.properties is a Java properties file which contains settings for Tomcat including class loader information, security package lists, and...Restrict access to Tomcat configuration directory
Details The Tomcat $CATALINA_HOME/conf directory contains Tomcat configuration files. It is recommended that the ownership of this directory be tomcat_admin:tomcat....Restrict access to Tomcat context.xml
Details The context.xml file is loaded by all web applications and sets certain configuration options. It is recommended that access...Restrict access to Tomcat logging.properties
Details logging.properties is a Tomcat file which specifies the logging configuration. It is recommended that access to this file properly...Restrict access to Tomcat logs directory
Details The Tomcat $CATALINA_HOME/logs directory contains Tomcat logs. It is recommended that the ownership of this directory be tomcat_admin:tomcat. It...Restrict access to Tomcat server.xml
Details server.xml contains Tomcat servlet definitions and configurations. It is recommended that access to this file properly protect against unauthorized...Restrict access to Tomcat temp directory
Details The Tomcat $CATALINA_HOME/temp directory is used by Tomcat to persist temporary information to disk. It is recommended that the...