Getting Started in MOSC

MOSC Banner

What is the secure configuration for allowing Java Wire Debugging for use within a Docker container?

edited Jun 2, 2021 5:05PM in Getting Started in MOSC Question

Note: I wasn't sure what category to select for this one (did not see a Java specific category).

Specific to Java Wire Debugging within a container environment, most of the Oracle guidance, as well as documentation on the internet, show the following configuration, which also works in our environment, with 8000 being the port leveraging the Wire Debugging service:

agentlib:jdwp=transport=dt_socket,server=y,address=8000

Our organization's vulnerability scanners flag the above configuration as vulnerable and expects debugging to be disabled or to only allow either debugging access to the localhost or the remote device requiring debugging access. Example:

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

Instructions for posting

×

1. Select a discussion category from the picklist.


2. Enter a title that clearly identifies the subject of your question.


3. In the body, insert detailed information, including Oracle product and version.


Please abide by the Oracle Community guidelines and refrain from posting any customer or personally identifiable information (PI/CI).


Cloud / Fusion customers - Our Cloud community has moved! Please go to Cloud Customer Connect .


New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center