Hardening in Jboss EAP 5.1
Hello ! As decided, we are starting out the practical session on hardening in Jboss.
Before going ahead with practical of hardening, if you haven’t read about Introduction to hardening. Its my suggestion to first read that blog.
We will Cover the hardening in jboss practical sessions in two part. As there are quite more security parameters in jboss.
By covering all the topics in a day, I wont want you to get confused and bored.
I will not make this blog big.. Just will keep it simple, short and crisp.
So, will just provide with the practical steps. I will make a separate blogs of each hardening topic with detailed information. So, that it is thoroughly understood.
Now Let’s start with it.
Topics covered in this session.
- Service account and Permissions.
- Change Default Port of Jboss
- Disabling Jboss Console.
- Removing Logo of Jboss
- Session Account and Permissions :
Create a user service account
[[email protected] /]# adduser jboss
make sure the jboss user has ownership of the files under $JBOSS_HOME ie if $JBOSS_HOME is /opt/jboss-5.1.0
[[email protected] /]# chown -R jboss.jboss /opt/jboss-5.1.0
- Changing Default Port of Jboss :
Go to server.xml
Path : /app1/jboss-eap-5.1/jboss-as/server/<profile>/deploy/jbossweb.sar
Change HTTP Connector and Redirection port i.e. 8080 and 8443 to 18080 and 18443 respectively.
Now, Go to web.xml
Path : /app1/jboss-eap-5.1/jboss-as/server/<profile>/deployers/jbossweb.deployer
There are around 10-12 ports, Kindly change with new port and Restart Jboss Service.
Now hit the URL with new port.
- Disabling Jboss Console :
Go to below path, Remove or backup the given directory.
Path : /app1/jboss-eap-5.1/jboss-as/server/default/deploy
Path : /app1/jboss-eap-5.1/jboss-as/server/default/deployers
Directory : Bsh.deployer
Restart the Jboss Service and Check your console. Magic !!
- Removing Jboss Logo :
Go to below path.
Path : : $JBOSS_HOME/server/<profile>/deploy/ROOT.war/favicon.ico
Replace favicon.ico with your organization logo or can take backup of this file and Restart the Jboss service.
Now, Check the logo of Jboss.
Thank You !
Happy Learning !!!
If you have doubt or queries, you can definetely comment us or can mail us on [email protected]
If you have any recommedation for future blog, You can email us on [email protected]
Top Searches :