Warning! Audit Deprecated
Information
Certain options when installed with the Weblogic server can pose a security threat. These may contain security vulnerabilities, so not installing them makes the installation more secure. The Server Examples option during installation includes sample applications, code examples, and the PointBase database. The PointBase database is included for evaluation purposes and it is not supported in the production environments. Also, the installing development tools on the production server is a security risk as they may contain security vulnerabilities, therefore they should not exist on the Administration Server.
Selecting this option could increase the attack surface and make the installation less secure.
NOTE - This check has not been performed. Please manually review your environment to ensure it matches policy and no development tools are installed.
Solution
For sample applications and code examples, ensure that when installing WebLogic Server, the option to install the Server Examples component is not selected. If it has been selected, navigate to the WL_HOME/common directory (e.g. /home/user/Oracle/Middleware/wlserver_10.3/common) and remove the directories 'samples' and 'eval'. Uninstall any development tools, if available on the production server.