Hi All
Does anyone have a good checklist for security?
For document folder on server properties file configuration etc?
Any advice?
Thanks
Hi All
Does anyone have a good checklist for security?
For document folder on server properties file configuration etc?
Any advice?
Thanks
Hi,
From my point of view :
There are several things that should change on the Axelor Side to enhanced the security (as do not expose db password en encryption password in a file which is readable by Tomcat…) but this is some good points to start
Regards
Thanks again.
How did you configured tomcat to read application properties as external file? Currently on our test environment it’s still inside src/resource so we build and deploy properties internally.
external file is better that having it inside the WEB-INF/classes folder, but in both cases this file must be readble by the tomcat user so it’s the same security risk
Yes I know, I was looking for some workaround, because that file store DB credential and also encryption password.