Fixes are available
APAR status
Closed as program error.
Error description
PROBLEM DESCRIPTION: the ITM web server responds to nonexistent web page requests with the default return page. This can be viewed as a security exposure. RECREATE INSTRUCTIONS: This can be demonstrated by attempting to attach to sites such as http://servername:PORT/kdh/bigBanana http://servername:PORT/kdh/hotDogs
Local fix
N/A
Problem summary
HTTP: KDH responding to nonexistent web page. The IBM Tivoli Monitoring Tivoli Enterprise Basic Services (TEBS) web server responds to nonexistent web page requests with the default return page. This can be viewed as a security exposure.
Problem conclusion
Code changed to recognize nonexistent web pages and return the standard HTTP 404 NOT FOUND status code. The fix for this APAR is contained in the following maintenance packages: | fix pack | 6.2.2-TIV-ITM-FP0006
Temporary fix
Comments
APAR Information
APAR number
IV03430
Reported component name
TEMS
Reported component ID
5724C04MS
Reported release
622
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2011-07-18
Closed date
2011-07-29
Last modified date
2011-09-29
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
TEMS
Fixed component ID
5724C04MS
Applicable component levels
R622 PSY
UP
R621 PSN
UP
[{"Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSTFXA","label":"Tivoli Monitoring"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"622"}]
Document Information
Modified date:
30 December 2022