ofbiz 确保部署安全
来源:互联网 发布:java junit单元测试 编辑:程序博客网 时间:2024/04/29 03:23
This is an outline of a few steps that should be taken to ensure that live deployed OFBiz systems do not leave open access for others to abuse.
It is not the intention to provide security advice on specific application servers as they are best researched elsewhere.
- If you loaded the default data ensure that you have changed the passwords or disabled the user logins for the following:
- admin
- flexadmin
- demoadmin
- ltdadmin
- supplier
To do this, use the Party Manager (http://<host:port>/partymgr). Log in as an administrator if necessary. Click Find All to find all parties. Click on desired party. Scroll down to user names and click edit on desired ID. You should ALWAYS change the password and optionally disable the account from there. If you choose to disable an account, be sure and leave the disabled date blank. If a disabled date is present, the account will automatically be re-enabled 30 minutes later. (This behavior is determined by the value for login.disable.minutes which is located in components/security/config/security.properties)
- Shut down unused webapps.
OFBiz comes with a number of webapps that you may not need. You may wish to shut them down to save resources and to deny possible methods of attack.
To do this you may,- edit base/config/component-load.xml and comment out the unneeded lines.
- If you need ressources in those components but don't want to make them available to user simply put app-bar-display="false" in the webapp section of corresponding ofbiz-component.xml files.
There are a few more things you should probably do:
- Change the port from 8080 to 80
- Possibly add or move a webapp to respond to "/".
- If you uncommented ou the BeanShell telnet service on 9989, 9990, BeanShell service ports are not secure, so protect the ports and requires attention for deployment!
- If you loaded the demo data be sure to disable all user logins except "admin" and maybe "flexadmin" Be sure to change their passwords if you expose your server to Internet
- This page may not be uptodate to the latest version of OFBiz at all times therefore you should always be careful and check your system for other possible holes.
原文来自:https://cwiki.apache.org/confluence/display/OFBTECH/How+to+secure+your+deployment
- ofbiz 确保部署安全
- OFBiz安全组
- 转 OFBiz安全组
- OFBiz安全组
- 转 OFBiz安全组
- ofbiz 安全组
- OFBiz安全组
- 确保 Web Service 安全
- Ofbiz删除源代码部署
- 安装部署OFBIZ步骤
- 安装部署OFBIZ
- 使用lock确保线程安全
- 使用lock确保线程安全
- 确保无线J2ME的安全
- 确保 PHP 应用程序的安全
- 确保PHP应用程序的安全
- 确保无线 J2ME 的安全
- 如何确保电子商务安全交易
- WPF ContextMenus 将两个contextmenus的内容拼接成一个
- 展望2015消费经济之云
- 我开博客啦
- Android-小小设置永久解决程序因为未捕获异常而异常终止的问题
- inline-block 之间的间距问题解决
- ofbiz 确保部署安全
- Linux下修改网卡的mac地址
- 【年度精选】之三《2015年云的十大预测》
- Androidの来短信监听详解
- adb server is out of date.killing的解决办法
- 简单tcp通信
- oracle常用函数
- java螺旋矩阵
- js原型对象与原型链