VCST-67-000015 – The Security Token Service must be configured with memory leak protection.
Details The Java Runtime environment can cause a memory leak or lock files under certain conditions. Without memory leak protection,...
- Home
- Security Hardening
- DISA STIG VMware vSphere 6.7 STS Tomcat V1R1
DISA STIG VMware vSphere 6.7 STS Tomcat V1R1
VCST-67-000016 – The Security Token Service must not have any symbolic links in the web content directory tree.
Details A web server is designed to deliver content and execute scripts or applications on the request of a client...VCST-67-000017 – The Security Token Service directory tree must have permissions in an ‘out-of-the-box’ state – out-of-the-box state.
Details As a rule, accounts on a web server are to be kept to a minimum. Only administrators, web managers,...VCST-67-000006 – The Security Token Service must generate log records during Java startup and shutdown – directory
Details Logging must be started as soon as possible when a service starts and as late as possible when a...VCST-67-000018 – The Security Token Service must fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.
Details Determining a safe state for failure and weighing that against a potential denial of service for users depends on...VCST-67-000006 – The Security Token Service must generate log records during Java startup and shutdown – .handlers
Details Logging must be started as soon as possible when a service starts and as late as possible when a...VCST-67-000019 – The Security Token Service must limit the number of allowed connections.
Details Limiting the number of established connections to the Security Token Service is a basic denial of service protection. Servers...VCST-67-000006 – The Security Token Service must generate log records during Java startup and shutdown – handlers
Details Logging must be started as soon as possible when a service starts and as late as possible when a...VCST-67-000020 – The Security Token Service must set ‘URIEncoding’ to UTF-8 – URIEncoding to UTF-8.
Details Invalid user input occurs when a user inserts data or characters into a hosted application’s data entry field and...VCST-67-000006 – The Security Token Service must generate log records during Java startup and shutdown – level
Details Logging must be started as soon as possible when a service starts and as late as possible when a...