Technical Stuff

Start from basics

Hardening in Jboss EAP 5.1

Hardening in Jboss EAP 5.1
Hardening in Jboss EAP 5.1
5 (100%) 1 vote

Hello ! As decided, we are starting out the practical session on hardening in Jboss.

Before going ahead with practical of hardening, if you haven’t read about Introduction to hardening. Its my suggestion to first read that blog.

We will Cover the hardening in jboss practical sessions in two part. As there are quite more security parameters in jboss.

By covering all the topics in a day, I wont want you to get confused and bored.

I will not make this blog big.. Just will keep it simple, short and crisp.

So, will just provide with the practical steps. I will make a separate blogs of each hardening topic with detailed information. So, that it is thoroughly understood.

Now Let’s start with it.

Topics covered in this session.

  1. Service account and Permissions.
  2. Change Default Port of Jboss
  3. Disabling Jboss Console.
  4. Removing Logo of Jboss

 

  1. Session Account and Permissions :

Create a user service account

[[email protected] /]# adduser jboss

make sure the jboss user has ownership of the files under $JBOSS_HOME ie if $JBOSS_HOME is /opt/jboss-5.1.0

[[email protected] /]# chown -R jboss.jboss /opt/jboss-5.1.0

 

  1. Changing Default Port of Jboss :

Go to server.xml

Path : /app1/jboss-eap-5.1/jboss-as/server/<profile>/deploy/jbossweb.sar

In server.xml,

Change HTTP Connector and Redirection port i.e. 8080 and 8443 to 18080 and 18443 respectively.

Now, Go to web.xml

Path : /app1/jboss-eap-5.1/jboss-as/server/<profile>/deployers/jbossweb.deployer

There are around 10-12 ports, Kindly change with new port and Restart Jboss Service.

Now hit the URL with new port.

 

  1. Disabling Jboss Console :

Go to below path, Remove or backup the given directory.

Path : /app1/jboss-eap-5.1/jboss-as/server/default/deploy

Directories:

  1. Management
  2. Jmx-console.war
  3. Admin-console.war
  4. Hd-scanner-jboss-bean.xml

 

Path : /app1/jboss-eap-5.1/jboss-as/server/default/deployers

Directory : Bsh.deployer

Restart the Jboss Service and Check your console. Magic !!

 

  1. Removing Jboss Logo :

Go to below path.

Path : : $JBOSS_HOME/server/<profile>/deploy/ROOT.war/favicon.ico

Replace favicon.ico with your organization logo or can take backup of this file and Restart the Jboss service.

Now, Check the logo of Jboss.

 

Thank You !

Happy Learning !!!

If you have doubt or queries, you can definetely comment us or can mail us on [email protected]

 

If you have any recommedation for future blog, You can email us on [email protected]

 

Top Searches :

  1. Introduction to hardening in Middleware.
  2. Enable TLS1.2 in Jboss EAP 7
  3. VAPT – Enabling TLS1.1/1.2 in Jboss
  4. VAPT – DISABLING HTTP METHODS
  5. VAPT – HOW TO REMOVE APACHE COYOTE VERSION FROM JBOSS
  6. INSTALLATION OF JBOSS ON LINUX
  7. INTRODUCTION TO JBOSS
  8. INTRODUCTION TO MIDDLEWARE
  9. Thread Dump
  10. Heap Dump.

One thought on “Hardening in Jboss EAP 5.1

Leave a Reply

%d bloggers like this: