Periodically, newer versions are released for Java software either due to security flaws or to include additional functionality. Using the latest Java version for App Service apps is recommended in order to take advantage of security fixes, if any, and/or new functionalities of the latest version. This policy only applies to Linux apps. This policy requires you to specify a Java version that meets your requirements.
The following 8 compliance controls are associated with this Policy definition 'App Service apps that use Java should use a specified 'Java version'' (496223c3-ad65-4ecd-878a-bae78737e9ed)
Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators: <, <=, >, >=, =, *, !, {, }, ||,&&, [empty], [nonempty], rgx: Learn more
Establish Procedures for Managing the Security of System Operations
Shared
n/a
Establish and implement operating procedures for managing the security of system operations such as designating system administrators, updating policies, changing rulesets, monitoring events, managing policy implementations or exceptions.
Establish Protective Measures for Administrator Privileges and Security Configurations
Shared
n/a
Establish and implement protective measures with regard to administrator privileges and security configurations to ensure that important information and personal information are not exposed as a result of unauthorized access by service type or misconfigurations.
Agencies SHOULD follow the documentation provided in the Open Web Application Security Project guide to building secure Web applications and Web services.
18
No results
Initiatives usage
Rows: 1-5 / 5
Records:
Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators: <, <=, >, >=, =, *, !, {, }, ||,&&, [empty], [nonempty], rgx: Learn more
- "displayName": "Ensurethat'Javaversion'isthelatest,ifused as a partofthe Web app",
3
"policyType": "BuiltIn",
4
"mode": "Indexed",
5
- "description": "Periodically, newer versions are released for Java software either due to security flaws or to include additional functionality. Using the latest Java version for web apps is recommended in order to take advantage of security fixes, if any, and/or new functionalities of the latest version. Currently,this policy only applies to Linux web apps.",
6
"metadata": {
7
- "version": "3.0.0",
8
"category": "App Service"
9
},
10
"parameters": {
11
"effect": {
@@ -22,12 +22,21 @@
22
},
23
"JavaLatestVersion": {
24
"type": "String",
25
"metadata": {
26
- "displayName": "Latest Java version",
27
- "description": "Latest supported Java version for App Services"
+ "displayName": "App Service apps that use Java should use a specified 'Java version'",
3
"policyType": "BuiltIn",
4
"mode": "Indexed",
5
+ "description": "Periodically, newer versions are released for Java software either due to security flaws or to include additional functionality. Using the latest Java version for App Service apps is recommended in order to take advantage of security fixes, if any, and/or new functionalities of the latest version. This policy only applies to Linux apps. This policy requires you to specify a Java version that meets your requirements.",
displayName: "App Service apps that use Java should use a specified 'Java version'",
policyType: "BuiltIn",
mode: "Indexed",
description: "Periodically, newer versions are released for Java software either due to security flaws or to include additional functionality. Using the latest Java version for App Service apps is recommended in order to take advantage of security fixes, if any, and/or new functionalities of the latest version. This policy only applies to Linux apps. This policy requires you to specify a Java version that meets your requirements.",