STIGQter STIGQter: STIG Summary: Java Runtime Environment (JRE) version 8 STIG for Unix Version: 1 Release: 3 Benchmark Date: 27 Oct 2017: Oracle JRE 8 deployment.config file must contain proper keys and values.

DISA Rule

SV-81399r2_rule

Vulnerability Number

V-66909

Group Title

SRG-APP-000516

Rule Version

JRE8-UX-000020

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Navigate to the “deployment.config” file for JRE:

/etc/.java/deployment/deployment.config

Add the key “deployment.system.config=<Path to deployment.properties>” to the deployment.config file. The following is an example:
“deployment.system.config=/etc/.java/deployment/deployment.properties". Note the use of forward slashes.

Add the key “deployment.system.config.mandatory=true” to the deployment.config file.

Check Contents

Navigate to the “deployment.config” file for JRE:

/etc/.java/deployment/deployment.config

The deployment.config file contains two properties: deployment.system.config and deployment.system.config.mandatory.

The "deployment.system.config" key points to the location of the deployment.properties file. The location is variable. It can point to a file on the local disk, or a UNC path. The following is an example:
“deployment.system.config=/etc/.java/deployment/deployment.properties"

If the “deployment.system.config” key does not exist or does not point to the location of the deployment.properties file, this is a finding.

If the “deployment.system.config.mandatory” key does not exist or is set to false, this is a finding.

Vulnerability Number

V-66909

Documentable

False

Rule Version

JRE8-UX-000020

Severity Override Guidance

Navigate to the “deployment.config” file for JRE:

/etc/.java/deployment/deployment.config

The deployment.config file contains two properties: deployment.system.config and deployment.system.config.mandatory.

The "deployment.system.config" key points to the location of the deployment.properties file. The location is variable. It can point to a file on the local disk, or a UNC path. The following is an example:
“deployment.system.config=/etc/.java/deployment/deployment.properties"

If the “deployment.system.config” key does not exist or does not point to the location of the deployment.properties file, this is a finding.

If the “deployment.system.config.mandatory” key does not exist or is set to false, this is a finding.

Check Content Reference

M

Target Key

3045

Comments