1 Reply Latest reply: Jul 31, 2012 10:43 AM by user11978485 RSS

    How to disable dmsoc4j in OC4J 9.x

      The product I'm working on, is using OC4J We need to disable dmsoc4j so that no one can access urls like http://<agent host>:<port>/dmsoc4j/Spy. It seems this is protected from OC4J 10.x and not in 9.x. So we are thinking of disabling url somehow. Is it possible to disable dmsoc4j in 9.x? Or is there any better way to restrict access to such urls apart from upgrading OC4J to 10.x?

        • 1. Re: How to disable dmsoc4j in OC4J 9.x
          One of our systems used to do this by putting some lines in <HOME>\Apache\Apache\conf\mod_oc4j.conf

          <LocationMatch "/j2ee/.*/Spy">
          Order deny,allow
          Deny from all

          And then the same again using AggreSpy instead of Spy.

          We don't use that version any more, in fact it was before my time, but I presume it worked.