Re: securing communications between web server and WO instances
Re: securing communications between web server and WO instances
- Subject: Re: securing communications between web server and WO instances
- From: Chuck Hill <email@hidden>
- Date: Wed, 14 May 2008 12:44:24 -0700
On May 14, 2008, at 12:38 PM, Alan Ward wrote:
On May 14, 2008, at 1:32 PM, Patrick Robinson wrote:
I've got a question that I can't recall ever being addressed here.
Using https gets you encrypted/secure communication between your
users' browsers and your web server. But what do you all typically
do to secure communications between your web server and your WO app
instances, especially when those instances are running on separate
hardware? Do you have a private network behind your web server
(i.e. between your web server and your WO servers)?
Most definitely, yes. Your webserver should be the only machine
visible to the outside. Everything else
should be behind a firewall and not reachable at all from the outside.
Amen. Ports 80 and 443 are the only things open. And 22 if you want
ssh access.
Chuck
--
Practical WebObjects - for developers who want to increase their
overall knowledge of WebObjects or who are trying to solve specific
problems.
http://www.global-village.net/products/practical_webobjects
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden