Detections
Analytics
JRE8-UX-000170 - Oracle JRE 8 must prompt the user for action prior to executing mobile code - deployment.insecure.jres.locked
Information
Mobile code can cause damage to the system. It can execute without explicit action from, or notification to, a user.Actions enforced before executing mobile code include, for example, prompting users prior to opening email attachments and disabling automatic execution.
This requirement applies to mobile code-enabled software, which is capable of executing one or more types of mobile code.
Solution
Navigate to the system-level 'deployment.properties' file for JRE./etc/.java/deployment/deployment.properties
Add the key 'deployment.insecure.jres=PROMPT' to the deployment.properties file.
Add the key 'deployment.insecure.jres.locked' to the deployment.properties file.
See Also
https://iasecontent.disa.mil/stigs/zip/U_Oracle_JRE_8_UNIX_V1R3_STIG.zip
Item Details
Audit Name: DISA STIG Oracle JRE 8 Unix v1r3
Category: SYSTEM AND COMMUNICATIONS PROTECTION
References: 800-53|SC-18(4), CAT|II, CCI|CCI-002460, Rule-ID|SV-81423r1_rule, STIG-ID|JRE8-UX-000170, Vuln-ID|V-66933
Plugin: Unix
Control ID: 540f97949955a981161e7ccbb91703a3d6cc15d016de633cb899c64faca7b908