Checklist Details for JBoss Enterprise Application Platform (EAP) 5.x

(Archived Revisions)

Checklist Highlights

Checklist Name:
JBoss Enterprise Application Platform (EAP)
Version:
5.x
Tier:
III
Review Status:
Final
Authority:
Third Party: Red Hat
Target Product:
Target Product CPE Name Product Category
Red Hat JBOSS Enterprise Application Platform 5.0.0 cpe:/a:redhat:jboss_enterprise_application_platform:5.0.0 (View CVEs)
  • Web Server
  • Application Server
Red Hat JBOSS Enterprise Application Platform 5.0.1 cpe:/a:redhat:jboss_enterprise_application_platform:5.0.1 (View CVEs)
  • Web Server
  • Application Server
Red Hat JBOSS Enterprise Application Platform 5.1.0 cpe:/a:redhat:jboss_enterprise_application_platform:5.1.0 (View CVEs)
  • Web Server
  • Application Server
Red Hat JBoss Enterprise Application Platform 5.1.1 cpe:/a:redhat:jboss_enterprise_application_platform:5.1.1 (View CVEs)
  • Web Server
  • Application Server
Red Hat JBoss Enterprise Application Platform 5.1.2 cpe:/a:redhat:jboss_enterprise_application_platform:5.1.2 (View CVEs)
  • Web Server
  • Application Server
Checklist Summary:
Summary can be found in the checklist
Checklist Role:
  • Web Server
  • Application Server
Known Issues:
There are no known issues
Target Audience:
JBoss Enterprise Application Platform 5.x Administrators
Testing Information:
This benchmark provides security guidance on JBoss EAP 5 running on Red Hat Enterprise Linux. (1) RHEL 5, i386 and x86_64 are fully compatable with XCCDFExec v1.1.4 Build 19, SPAWAR Compliance Checker v3.0.2 and OpenSCAP v0.8.2 (2) RHEL 6, i386 and x86_64 are fully compatable with SPAWAR Compliance Checker v3.0.2 and OpenSCAP v0.8.2. Additional dependencies needed for XCCDFEXEC v1.1.4 Build 19.
Regulatory Compliance:
The content maps to NIST 800.53 and DISA 8500.2 controls.
Disclaimer:
No disclaimer
Product Support:
Execution of the checklist does not impact support
Point of Contact:
Questions, comments, suggestions, and problem reports can be submitted to https://fedorahosted.org/scap-security-guide/
Sponsor:
Red Hat sponsored building and submission of the content and it is under review by multiple government organizations
Licensing:
Open Source. Released under the GNU Lesser General Public License v3.
NIST checklist record last modified on 09/25/2013