Check: VCPF-67-000026
VMware vSphere 6.7 Perfcharts Tomcat STIG:
VCPF-67-000026
(in versions v1 r3 through v1 r1)
Title
Performance Charts must properly configure log sizes and rotation. (Cat II impact)
Discussion
To ensure that the logging mechanism used by the web server has sufficient storage capacity in which to write the logs, the logging mechanism must be able to allocate log record storage capacity. Performance Charts properly sizes and configures log rotation during installation. This default configuration must be verified.
Check Content
At the command prompt, execute the following command: # grep -i "max" /etc/vmware-perfcharts/log4j.properties Expected result: log4j.appender.LOGFILE.MaxFileSize=5MB log4j.appender.LOGFILE.MaxBackupIndex=10 If the output of the command does not match the expected result, this is a finding.
Fix Text
Open /etc/vmware-perfcharts/log4j.properties with a text editor and add or change the following settings: log4j.appender.LOGFILE.MaxFileSize=5MB log4j.appender.LOGFILE.MaxBackupIndex=10
Additional Identifiers
Rule ID: SV-239427r879730_rule
Vulnerability ID: V-239427
Group Title: SRG-APP-000357-WSR-000150
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001849 |
The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements. |
Controls
Number | Title |
---|---|
AU-4 |
Audit Storage Capacity |