Cloud Management and AIOps


This is an IBM Automation portal for Cloud Management and AIOps products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).

Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.

Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Add a new idea Subscribe
Status Functionality already exists
Workspace IBM Cloud Pak for AIOps
Created by Guest
Created on Jul 25, 2022

RELATED IDEAS

Consider disabling file serving and directory browsing (fileServingEnabled & com.ibm.ws.webcontainer.disallowAllFileServing)

According to Visa Security policies fileServingEnabled property should be disabled on all the /WEB-INF/ibm-web-ext.xmi' file(s). This property is managed by global property which is com.ibm.ws.webcontainer.disallowAllFileServing. If this is set true it will override the value of fileServingEnabled in all user applications. However, if we set com.ibm.ws.webcontainer.disallowAllFileServing as true it will break the application (JazzSM, WebGUI). Hence we need a solution for this. For more information please refer the case TS009979826 Thanks Kulli
Idea priority Medium
  • Guest
    Reply
    |     Sep 23, 2022

    Hi,


    We enable fileServingEnabled property mainly to use static files which is overridden by com.ibm.ws.webcontainer.disallowAllFileServing=true, which makes dash application to fail.

    According to DASH design, static files are called through application access only and none of the static files exposes any confidential information.

    And these static files cannot be accessed outside of unsuccessful DASH login.


    Conclusion: We recommend all DASH customers not to declare com.ibm.ws.webcontainer.disallowAllFileServing=true (https://www.ibm.com/support/pages/node/6605691)


    In case any vulnerabilities on DASH static files, please open psirt on 'Jazz for Service Management' (https://www.ibm.com/blogs/psirt/)



  • Guest
    Reply
    |     Sep 12, 2022

    Hi

    DASH is an application deployed on WebSphere. Once declaring com.ibm.ws.webcontainer.disallowAllFileServing=true, which overrides application specific property fileServingEnabled = false .
    I am Working with WAS support to know alternative ways to whitelist DASH related static files. Once i get concrete response from WebSphere team, i will post my final conclusion.

  • Guest
    Reply
    |     Aug 30, 2022

    Hi,

    Evaluating the root cause of the DASH failure when enabling com.ibm.ws.webcontainer.disallowAllFileServing to true.
    Need 10 working days (eta: 9-Sept-2022) for this evaluation. In case any delay, will update the ticket accordingly.


    Once evaluated, i will come up with action plan (provided no changes to existing design) and which fixpack we can target the code change.

  • Guest
    Reply
    |     Aug 19, 2022

    Hi Team,

    You can tag this idea to DASH JAZZSM team.

    Thanks & Regards,
    Basavarajj C Kulli | Staff Software Engineer | Next-G Operation Tech Solution | AOP Event Management | Work +65 65793653 | Mobile +65 97832376
    [cid:image001.png@01D8B3BC.851ACFA0]
    For Netcool/EB issues or requests, please use the following: https://visawiki.trusted.visa.com/pages/viewpage.action?pageId=942711618

    image001.png
    image001.png
    Open full size
    image001.png
  • Guest
    Reply
    |     Aug 18, 2022

    Hi,

    Netcool/WebGUI is running on WebSphere Application Server.
    Product is Netcool/WebGUI

    Thanks & Regards,
    Basavarajj C Kulli | Staff Software Engineer | Next-G Operation Tech Solution | AOP Event Management | Work +65 65793653 | Mobile +65 97832376
    [cid:image001.png@01D8B32E.AB768B50]
    For Netcool/EB issues or requests, please use the following: https://visawiki.trusted.visa.com/pages/viewpage.action?pageId=942711618

    image001.png
    image001.png
    Open full size
    image001.png
  • Guest
    Reply
    |     Aug 16, 2022

    The application identified is not part of the WebSphere Application Server product, but another IBM product deployed on WebSphere. Unfortunately I do not know what the IBM product being used is so I cannot transfer the idea. I see from the description that Jazz for Service Management is used, but this is a component of multiple products. If you can respond providing me the product that is being used I can refile this Aha Idea against the appropriate product.

  • Guest
    Reply
    |     Jul 29, 2022

    Ignore my previous update, has typo error.


    Evaluating the enhancement request.

  • Guest
    Reply
    |     Jul 29, 2022

    Evaluating the enhanment request.

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.