[SOLVED] Securing Config Files with Passwords - Oracle OTM / G-Log GC3 Community Support

otmfaq

Forums

Blogs

Register

FAQ

Members List

Today's Posts

Subscribe Blogs:RSS

Subscribe Forums:RSS

OTMFAQ Home
OTMFAQ Blogs
OTMFAQ Forums
OTMFAQ Tutorials

OTM SIG
MavenWire

		Oracle OTM / G-Log GC3 Community Support > OTM / G-Log - Technical Topics > Security
[SOLVED] Securing Config Files with Passwords

Security Keeping your OTM / G-Log instances secure.

Tags: config, passwords, securing

Closed Thread

#1 (permalink)

Old

March 22nd, 2007, 16:14

chrisplough chrisplough is offline

chrisplough is offline

Site Moderator

Join Date: Jun 2006

Location: West Chester, PA

Posts: 847

Blog Entries: 7

Thanks: 53

Thanked 205 Times in 124 Posts

Groans: 0

Groaned at 0 Times in 0 Posts

Rep Power: 10

chrisplough has a spectacular aura about

chrisplough has a spectacular aura about

chrisplough has a spectacular aura about

Send a message via AIM to chrisplough

[SOLVED] Securing Config Files with Passwords

There are a few config files in OTM that contain OTM system passwords (including DB usernames and passwords), which should be properly secured to help maintain SOX compliance and promote the general security of the application.
The following files should be kept with permissions of 600:

Web Server:
<otm_install_dir>/glog/config/glog.properties

<otm_install_dir>/tomcat/bin/tomcat.conf

App Server:
<otm_install_dir>/glog/config/glog.properties

<otm_install_dir>/weblogic/config/gc3domain/weblogic.conf

Of course, real security depends on changing all of the default passwords in OTM (DB users, OS users, OTM users, etc) -- but you've already done that, haven't you?

Hope this helps!

--Chris

__________________
Chris Plough
MavenWire

www.MavenWire.com

Last edited by chrisplough : March 22nd, 2007 at 16:17.

Digg this Post!

Add Post to del.icio.us

Bookmark Post in Technorati

Furl this Post!

Closed Thread

« [SOLVED] Deleting Domains | [SOLVED] Issue: Changing GUEST.ADMIN Password Causes OTM Restart to Fail »

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts vB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are On Pingbacks are On Refbacks are On

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Recovering Passwords in WebSphere	chrisplough	Security	0	December 6th, 2007 21:46
[SOLVED] OTM 5.5 - UTF-8 files and BOM	ianlo	Integration and Data Mapping	1	June 15th, 2007 02:38
RE: Order release splitting in v5.5 bulk planning (load config)	Rick v100	Email List Archive	0	December 12th, 2006 17:30
Order release splitting in v5.5 bulk planning (load config)	Mauricio Ramirez	Email List Archive	1	December 12th, 2006 12:40
[SOLVED] Securing WebLogic - Hiding the system Password	chrisplough	Security	0	October 3rd, 2006 15:27

All times are GMT. The time now is 03:39.
Copyright © 2008, Open Book Solutions LLC. All rights reserved.

Sponsored by MavenWire - MavenWire.com

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37