Tomcat Web Hosting Blog - Java, JSP, EJB, Hibernate » 2009

Chapter 14: Tomcat Security . Tomcat should be

Wednesday, September 16th, 2009

Chapter 14: Tomcat Security . Tomcat should be run under a Tomcat-specific account with limited permissions. . The Java Security Manager can be used to limit the operations that Web applications may perform. . Web applications can be secured by using standard mechanisms for authentication and access control. . The directory listing feature of DefaultServlet should be disabled. . Invoker servlets should be disabled. SSI and CGI features should be disabled from the default Web descriptor if not absolutely required by the running applications. . SSL can be used to secure important data communication between the Web server and the browser. . Access to Web applications can be restricted to certain IP addresses or range of IP addresses. The next chapter discusses shared hosting using Tomcat.

For high quality website hosting services please check tomcat web hosting website.

Posted in tomcat | No Comments »

Tomcat Web Hosting Blog - Java, JSP, EJB, Hibernate

Archive for September, 2009

Chapter 14: Tomcat Security . Tomcat should be

Chapter 14: Tomcat Security Disabling an Invoker Servlet,

Chapter 14: Tomcat Security You can click Examine

Chapter 14: Tomcat Security changeit ), the keystorePassattribute must

Chapter 14: Tomcat Security Finally, you import the

Chapter 14: Tomcat Security Next, this certificate is

Chapter 14: Tomcat Security keystorePass attribute will need

Chapter 14: Tomcat Security The server configuration may

Chapter 14: Tomcat Security Adding or Deleting Users

Chapter 14: Tomcat Security //trust JAAS grant codeBase

Pages

Archives

Categories