7.7 Configure log file size limit (verify java.util.logging.FileHandler.limit is present)

Information

By default, the logging.properties file will have no defined limit for the log file size. This is a potential denial of service attack as it would be possible to fill a drive or partition containing the log files.

Solution

Create the following entry in your logging.properties file. This field is specified in bytes.
java.util.logging.FileHandler.limit=10000

See Also

https://workbench.cisecurity.org/files/266

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-4

Plugin: Unix

Control ID: 347c0b92d9454187c04187c49ed17c1058b27115d10ff6b32cba24b32cc023c9