Re: securing communications between web server and WO instances
Re: securing communications between web server and WO instances
- Subject: Re: securing communications between web server and WO instances
- From: Ken Anderson <email@hidden>
- Date: Wed, 14 May 2008 16:23:21 -0400
Chuck,
It's clear you don't work for a bank!!
Ken
On May 14, 2008, at 3:44 PM, Chuck Hill wrote:
On May 14, 2008, at 12:38 PM, Alan Ward wrote:
On May 14, 2008, at 1:32 PM, Patrick Robinson wrote:
I've got a question that I can't recall ever being addressed here.
Using https gets you encrypted/secure communication between your
users' browsers and your web server. But what do you all
typically do to secure communications between your web server and
your WO app instances, especially when those instances are running
on separate hardware? Do you have a private network behind your
web server (i.e. between your web server and your WO servers)?
Most definitely, yes. Your webserver should be the only machine
visible to the outside. Everything else
should be behind a firewall and not reachable at all from the
outside.
Amen. Ports 80 and 443 are the only things open. And 22 if you
want ssh access.
Chuck
--
Practical WebObjects - for developers who want to increase their
overall knowledge of WebObjects or who are trying to solve specific
problems.
http://www.global-village.net/products/practical_webobjects
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden