Enable protected tables plugin [New in Security Center 1.3]

  • Release version: Yokohama
  • Updated January 30, 2025
  • 1 minute to read

    • Use the com.glide.security.protected_table.enabled property to prevent higher privilege users from tampering with log tables.

    When the com.glide.security.protected_table.enabled property is set to true, the protected tables plugin will be used to prevent higher privilege users on an instance from tampering with log tables. The following log tables have special protections when this property is set to true:

    • syslog (No DB Override)
    • syslog_transaction
    • sys_outbound_http_log
    • sysevent
    • sys_audit
    • sys_push_notification
    • protected_table_configuration (No DB Override)

    The integrity of logs is important for determining malicious activity on an instance by a customer admin.

    More information

    Attribute Description
    Configuration name com.glide.security.protected_table.enabled
    Configuration type System Properties (/sys_properties_list.do)
    Data type boolean
    Recommended value true
    Default value false
    Category Error handling and logging
    Security risk
    • Severity score: 4.5
    • CVSS score: Medium
    • Security risk details: Not setting com.glide.security.protected_table.enabled to the recommended value of true enables higher privilege users on an instance to tamper with log tables.
    Dependencies and prerequisites None
    References System logs