rspec/rules/S1685/cobol/rule.adoc

Debug statements (ones with 'D' or 'd'  in the indicator area) should not be executed in production, but the ``++WITH DEBUGGING MODE++`` clause activates all debug lines, which could expose sensitive information to attackers. Therefore the ``++WITH DEBUGGING MODE++`` clause should be removed.


== Noncompliant Code Example

----
SOURCE-COMPUTER. IBM-370 WITH DEBUGGING MODE.
----


== Compliant Solution

----
SOURCE-COMPUTER. IBM-370.
----


== See

* https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure[OWASP Top 10 2017 Category A3] - Sensitive Data Exposure
* http://cwe.mitre.org/data/definitions/489.html[MITRE, CWE-489] - Leftover Debug Code
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			Debug statements (ones with 'D' or 'd' in the indicator area) should not be executed in production, but the ``++WITH DEBUGGING MODE++`` clause activates all debug lines, which could expose sensitive information to attackers. Therefore the ``++WITH DEBUGGING MODE++`` clause should be removed.

Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`== Noncompliant Code Example`

			`----`
			`SOURCE-COMPUTER. IBM-370 WITH DEBUGGING MODE.`
			`----`

Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`== Compliant Solution`

			`----`
			`SOURCE-COMPUTER. IBM-370.`
			`----`

Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`== See`

			`* https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure[OWASP Top 10 2017 Category A3] - Sensitive Data Exposure`
			`* http://cwe.mitre.org/data/definitions/489.html[MITRE, CWE-489] - Leftover Debug Code`
Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00