Possible security exposure via HTTP administration interface (6252097) (Sun Java Enterprise System 2005Q4 Release Notes)

Sun Java Enterprise System 2005Q4 Release Notes

Previous: Access Manager Installation
Next: Deployment on Administration Server 8.1 with non-default URIs is inaccessible (6308426)

Possible security exposure via HTTP administration interface (6252097)

The HTTP administrator interface and related files may be susceptible to DOS attacks.

Solution It is recommended that you temporarily remove the help.exe file until a fix is available. Also, do not run Administration server as a privileged system user. It is also recommended that you firewall and filter Administration Server access to allow trusted hosts only.

Previous: Access Manager Installation
Next: Deployment on Administration Server 8.1 with non-default URIs is inaccessible (6308426)