The server.xml file must be protected from unauthorized modification.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-250344 | SRG-APP-000380-AS-000088 | IBMW-LS-000910 | SV-250344r961461_rule | 2025-02-11 | 2 |
| Description |
|---|
| When dealing with access restrictions pertaining to change control, it should be noted that any changes to the software, and/or application server configuration could potentially have significant adverse effects on the overall security of the system. Protect the server.xml file from unauthorized modification by applying file permission restrictions. |
| ℹ️ Check |
|---|
| As a privileged user with local file access to ${server.config.dir}/server.xml, verify the server.xml file permissions are set to 660. If the server.xml file permissions are not set to 660, this is a finding. |
| ✔️ Fix |
|---|
| As a privileged user with local file access to ${server.config.dir}/server.xml. Use the chmod command to configure the correct file permissions of 660. chmod 660 server.xml |