Forum LAMS for Tech-Heads - General Forum: JMX Console and Web Console
| You may request notification for JMX Console and Web Console. |
|
1:
JMX Console and Web Console
By: Nicolas Dunand
|
03/10/08 05:58 AM | ||
|
Hi,
After looking through the LAMS documentation and forums for a while, I didn't find any information about this, so here I post : After successfully having installed LAMS on a test servers of ours, I decided to run a security check using Nessus ; this software just scans any open port of a distant machine and tries to find vulnerabilities. It turned out that by default the JMX Console and Web Console were accessible on my server ... No idea what is was at start, but it turned out that any one could at least see (maybe also set ?) server parameters without having to authentify first, simply by visiting http://myservername:8080/jmx-console/ or http://myservername:8080/jmx-console/web-console/ I went through tech docs at jboss.com to try and fix this, but this is more than 10 files to edit ... Is the JBoss server in LAMS supposed to act so, or is this some mistake in my initial LAMS configuration ? Posted by Nicolas Dunand |
||||
|
||||||||||
|
||||||||||
Reply to first post on this page
Back to LAMS for Tech-Heads - General Forum