Oracle® Fusion
Applications Security Hardening Guide 11g Release 1 (11.1.2) Part Number E16690-02 |
Contents |
Previous |
Next |
This chapter contains the following:
Removing Unused Business Intelligence and Enterprise Performance Management Components: Explained
Components not in use in a deployment can represent unnecessary security risks.
For troubleshooting purposes, Enterprise Performance Manager (EPM) Workspace is delivered with uncrunched JavaScript files. For security purposes, remove these uncrunched JavaScript files from your production environment.
Create a backup copy of Oracle_BI1/common/epmstatic/wspace/js/directory
.
Delete all the .js
files except DIRECTORY_NAME
from each subdirectory of Oracle_BI1/common/epmstatic/wspace/js
.
Each subdirectory contains a .js
file that bears the name of the directory. For example, Oracle_BI1/common/epmstatic/wspace/js/com/hyperion/bpm/web/common
contains Common.js
. Remove all .js
files except the one that bears the name
of the directory, in this case, Common.js
.
Both UNIX and Windows platforms provide a variety of operating system services, most of which are not necessary for most deployments. Such services include FTP, TFTP, TELNET and so on. Be sure to close both the UDP and TCP ports for each service that is being disabled. Disabling one type of port and not the other does not make the operating system more secure.