Restrict access to the web administration application
Details Limit access to the web administration application to only those with a justified need. Rationale: Limiting access to the...
- Home
- Security Hardening
- CIS Apache Tomcat 9 L1 V1.1.0 Middleware
CIS Apache Tomcat 9 L1 V1.1.0 Middleware
Restrict access to Tomcat binaries directory
Details The Tomcat $CATALINA_HOME/bin directory contains executes that are part of the Tomcat run-time. It is recommended that the ownership...Restrict access to Tomcat catalina.policy
Details The catalina.policy file is used to configure security policies for Tomcat. It is recommended that access to this file...Restrict access to Tomcat catalina.properties
Details catalina.properties is a Java properties file which contains settings for Tomcat including class loader information, security package lists, and...Restrict access to Tomcat configuration directory
Details The Tomcat $CATALINA_HOME/conf directory contains Tomcat configuration files. It is recommended that the ownership of this directory be tomcat_admin:tomcat....Restrict access to Tomcat context.xml
Details The context.xml file is loaded by all web applications and sets certain configuration options. It is recommended that access...Restrict access to Tomcat logging.properties
Details logging.properties is a Tomcat files which specifies the logging configuration. It is recommended that access to this file properly...Restrict access to Tomcat logs directory
Details The Tomcat $CATALINA_HOME/logs directory contains Tomcat logs. It is recommended that the ownership of this directory be tomcat_admin:tomcat. It...Restrict access to Tomcat server.xml
Details server.xml contains Tomcat servlet definitions and configurations. It is recommended that access to this file properly protect from unauthorized...Restrict access to Tomcat temp directory
Details The Tomcat $CATALINA_HOME/temp directory is used by Tomcat to persist temporary information to disk. It is recommended that the...