7.7 Configure log file size limit (verify java.util.logging.FileHandler.limit is smaller than disk partition)

Information

By default, the logging.properties file will have no defined limit for the log file size. This is a potential denial of service attack as it would be possible to fill a drive or partition containing the log files.

Solution

Create the following entry in your logging.properties file. This field is specified in bytes.
java.util.logging.FileHandler.limit=10000

See Also

https://workbench.cisecurity.org/files/266

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-4

Plugin: Unix

Control ID: 0b41473f8351acdb8dfe7bee302499445b2a289b70330b33a647600b89a0ad04