7.2 Specify file handler in logging.properties files - check if org.apache.juli.FileHandler exists in web application

Information

Handlers specify where log messages are sent. Console handlers send log messages to the Java console and File handlers specify logging to a file.

Rationale:

Utilizing file handlers will ensure that security event information is persisted to disk.

Solution

Add the following entries to your logging.properties file if they do not exist.

handlers=...,<prefix>org.apache.juli.FileHandler,...

Ensure logging is not off and set the logging level to the desired level such as:

<prefix>org.apache.juli.FileHandler.level=FINEST

Default Value:

No value for new applications by default.

References:

https://tomcat.apache.org/tomcat-8.0-doc/logging.html

See Also

https://workbench.cisecurity.org/files/2506

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12, CSCv7|6.3

Plugin: Unix

Control ID: 6da42a02ef19f5cc28dbcb1d3a7a2de6e8c660de02220a7a225e628f25fbf3cb