...
This compliant solution disables monitoring by remote machines. By default, local monitoring is enabled in Java 6. In earlier versions, the system property com.sun.management.jmxremote must be set to enable local monitoring. Although the unsupported -XX:+DisableAttachMechanism command-line option may be used to disable local Java tools from monitoring the JVM, it is always possible to use native debuggers and other tools to perform monitoring. Fortunately, monitoring tools require at least as many privileges as the owner of the JVM process possesses, reducing the threat of a local exploitation through privilege escalation attack.
Local monitoring uses temporary files and sets the file permissions to those of the owner of the JVM process. Ensure that adequate file protection is in place on the system running the JVM so that the temporary files are accessed appropriately. See rule FIO03-J. Remove temporary files before termination for additional information.
...
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="fb9bacb8dfd41834-16af4a64-44ef4739-b22fad25-40fb29b2760d71385d738598"><ac:plain-text-body><![CDATA[ | [[JMX 2006 | AA. References#JMX 06]] |
| ]]></ac:plain-text-body></ac:structured-macro> | |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="277f86159812125a-334c42a0-4b1b4ddd-92a88cb2-70826964c2cd8a28dc04549f"><ac:plain-text-body><![CDATA[ | [[JMXG 2006 | AA. References#JMXG 06]] |
| ]]></ac:plain-text-body></ac:structured-macro> | |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="423d8ad87bc85d52-d8dac55b-4b06490e-b0b8bf1f-8073e151fc5cb495287f7fdc"><ac:plain-text-body><![CDATA[ | [[JPDA 2004 | AA. References#JPDA 04]] |
| ]]></ac:plain-text-body></ac:structured-macro> | |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="75e68999f3e64772-bf30fbe4-40a1492e-b0ab837e-e2534e3cd5c076782c0503ea"><ac:plain-text-body><![CDATA[ | [[JVMTI 2006 | AA. References#JVMTI 06]] |
| ]]></ac:plain-text-body></ac:structured-macro> | |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="16aef11a6c8e5475-8926777a-43c7424e-946386b8-c7dfdb9f3b07859a6b641b89"><ac:plain-text-body><![CDATA[ | [[Long 2005 | AA. References#Long 05]] | Section 2.6, The JVM Tool Interface; Section 2.7, Debugging; Section 2.8, Monitoring and Management | ]]></ac:plain-text-body></ac:structured-macro> | |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="7f3aad310d2e0738-321b1a9e-4ec94d76-a087affb-478011448ea88d659b5c48a8"><ac:plain-text-body><![CDATA[ | [[Reflect 2006 | AA. References#Reflect 06]] | [Reflection | http://java.sun.com/javase/6/docs/technotes/guides/reflection/index.html], Sun Microsystems, Inc. (2006) | ]]></ac:plain-text-body></ac:structured-macro> |
...