ColdFusion must log scheduled tasks.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| low | V-279035 | SRG-APP-000097-AS-000060 | APAS-CF-000080 | SV-279035r1171616_rule | 2025-12-19 | 1 |
| Description |
|---|
| Logging scheduled tasks in ColdFusion is essential for detecting unauthorized or unexpected behavior, ensuring task execution integrity, and supporting forensic investigations. Scheduled tasks can be used to automate critical operations, including data transfers, script executions, or maintenance routines. If these tasks are not properly logged, malicious or erroneous activities may go undetected. For example, an attacker could schedule a task to exfiltrate data or alter application configurations without immediate notice. Recording details such as task name, execution time, user context, success or failure status, and any associated errors provides administrators with the necessary information to monitor system behavior, identify anomalies, and maintain accountability. |
| ℹ️ Check |
|---|
| Verify Logging is enabled. From the Admin Console Landing Screen, navigate to Debugging & Logging >> Logging Settings. If "Enable logging for scheduled tasks" is missing, the Scheduler is not installed, and this is not a finding. If "Enable logging for scheduled tasks" exists and is not checked, this is a finding. |
| ✔️ Fix |
|---|
| Configure ColdFusion to enable logging. 1. From the Admin Console Landing Screen, navigate to Debugging & Logging >> Logging Settings. 2. Check "Enable logging for scheduled tasks". 3. Select "Submit Changes". |