Log html sanitization [Removed in Security Center 2.0]

  • Release version: Yokohama
  • Updated January 30, 2025
  • 1 minute to read

    • Configure glide.html_sanitize.discarded_log.enable property to determine if HTML sanitization events will be logged in your instance.

    If this property is not set to the recommended value of true, HTML sanitization events are not logged in the sys_log table. Lack of logging could negatively impact your instance automated security detection and investigation capabilities.

    More information

    Attribute Description
    Configuration name glide.html_sanitize.discarded_log.enable
    Configuration type System Properties (/sys_properties_list.do)
    Data type boolean
    Recommended value true
    Default value true
    Category Error handling and logging
    Security risk
    • Severity score: 2.4
    • CVSS score: Low
    • Security risk details: If this property is not set to the recommended value of true, HTML sanitization events are not logged in the sys_log table which could impact automated security detection and investigation capabilities.
    Dependencies and prerequisites None
    References Enabling HTML sanitizer