Browser version scriptSkip Headers

Oracle® Fusion Applications Security Hardening Guide
11g Release 5 (11.1.5)
Part Number E16690-5 		Go to contents page
Contents 		Go to Feedback page
Contact
Us
Go to previous page
Previous 		Go to previous page
Next

4 Disabling Unused Components

This chapter contains the following:

Removing Unused Business Intelligence and Enterprise Performance Management Components: Explained

Removing Unused Business Intelligence and Enterprise Performance Management Components: Explained

Components not in use in a deployment can represent unnecessary security risks.

Removing Debug Utilities in a Workspace Web Application

For troubleshooting purposes, Enterprise Performance Manager (EPM) Workspace is delivered with uncrunched JavaScript files. For security purposes, remove these uncrunched JavaScript files from your production environment.

  1. Create a backup copy of Oracle_BI1/common/epmstatic/wspace/js/directory.

  2. Delete all the .js files except DIRECTORY_NAME from each subdirectory of Oracle_BI1/common/epmstatic/wspace/js.

Each subdirectory contains a .js file that bears the name of the directory. For example, Oracle_BI1/common/epmstatic/wspace/js/com/hyperion/bpm/web/common contains Common.js. Remove all .js files except the one that bears the name of the directory, in this case, Common.js.

Disabling Operating System Services

Both UNIX and Windows platforms provide a variety of operating system services, most of which are not necessary for most deployments. Such services include FTP, TFTP, TELNET and so on. Be sure to close both the UDP and TCP ports for each service that is being disabled. Disabling one type of port and not the other does not make the operating system more secure.

Go to previous page
Previous 		Go to previous page
Next		 Go to Table of Contents
Contents 		Go to Feedback page
Contact
Us