This content has been marked as final. Show 3 replies
I looking at the Eden posts, I have answered this specific question, however a new question pops up.
From Doug Bailey Oct 26, 2011:
"The current versions of the Endeca components are not tested or supported on Tomcat 7."
"We strongly suggest that servers for Endeca applications not be exposed to internet access as well as wide network access in general, and we recommend that access to the Tomcat server be locked down in a similar fashion as other web servers. Endeca does not support any independent migration of the shipping version of Tomcat to a later version."
"Endeca deems the actual threat posed by these vulnerabilities to be low because these applications should be "behind the firewall" and should be secured by all of the other fail-safes that keep your network protected. Only the ports necessary for communication to and from the EAC and shutdown ports (etc.) should be available and those should only be accessible from the hosts that they will be communicating with, e.g., the EAC central server."
The new question is this:
What ideas are out there for securing the Workbench port 8006 in such a way to be compliant with PCI standards? If there is already documentation out there, please share.