WBSP-AS-001740 - The WebSphere Application Server must remove organization-defined software components after updated versions installed.

Information

By default, when updating WebSphere application server, the older version of binaries are saved in case a 'roll back' is necessary. Not keeping the older version makes it more difficult for attackers to 'revert' back to the older version.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Review System Security Plan and system documentation to locate the 'IBM InstallationManager' folder.

Default locations are:
UNIX:
/opt/InstallationManager

Windows:
C:Program FilesInstallationManager

UNIX:
<IMHOME>/eclipse/tools/imcl -c

Select 'P' preferences.
Select '3' Files for rollback.
Enter '1' to deselect.
Enter 'A' for apply.
Enter 'R' to return to Main Menu.

Windows:
<IMHOME>eclipsetoolsimcl.exe -c

Select 'P' preferences.
Select '3' Files for rollback.
Enter '1' to deselect.
Enter 'A' for apply.
Enter 'R' to return to Main Menu.

See Also

http://iasecontent.disa.mil/stigs/zip/U_IBM_WebSphere_Traditional_V9-x_V1R1_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-2(6), CAT|II, CCI|CCI-002617, Rule-ID|SV-96111r1_rule, STIG-ID|WBSP-AS-001740, Vuln-ID|V-81397

Plugin: Unix

Control ID: 05d15cd92390f2461f6fc8a0855d9efce489f815f85c0ce788084ecfa1f051a4