Table of Contents Table of Contents Title and Copyright Information Preface Purpose Audience Documentation Accessibility Diversity and Inclusion Conventions Related Resources Screenshot Disclaimer Acronyms and Abbreviations 1 General Security Principles 1.1 Restrict Network Access to Critical Services 1.2 Follow the Principle of Least Privilege 1.3 Monitor System Activity 1.4 Keep Up To Date on Latest Security Information 2 Secure Installation and Configuration 2.1 Architecture Diagram 2.2 Installing WebLogic 2.3 Configuring SSL 2.4 Disable SSLv3 2.5 HTTP Response Header Configurations 2.6 Cookie Attributes 2.7 Password Policy Guidelines 3 Guidance for Implementation Teams 4 List of Topics Index