1. Security Practices Guide
  2. Security Features
  3. Additional Recommendations

7.2 Additional Recommendations

To enable/add transport level security by using SSL:
  1. Select Environments > Servers > <Server in which application is Deployed>
  2. Select the SSL Listen Port Enabled check-box and input the port number in the SSL Listen port.
  3. Authentication/Authorization: As mentioned in application installation document.
  4. Set-up HTTP server in front of weblogic:http://docs.oracle.com/cloud/latest/fmw122100/CNFGD/web_server.htm#CNFGD192
  5. Addition of WS policies: As mentioned in the Webservices installation document.
  6. Restricted access to log files: This can be achieved by granting right permissions to files and folders.
  7. Hashing of authentication passwords: The passwords stored in the weblogic are hashed by weblogic. Developers don’t have control.
  8. Storage of authentication certificates in password protected Keystore: http://docs.oracle.com/javase/7/docs/technotes/tools/windows/keytool.html
  9. Database Auditing: http://docs.oracle.com/database/121/DBSEG/auditing.htm#DBSEG1023
  10. Secure Database back-up: http://docs.oracle.com/database/121/BRADV/toc.htm
  11. Database Access Control List: http://docs.oracle.com/database/121/ADXDB/xdb21sec.htm#ADXDB2400
  12. File/Socket IO runtime Permissions: http://docs.oracle.com/database/121/JJDEV/chten.htm#JJDEV10000
  13. Oracle Wallet: http://docs.oracle.com/database/121/DBIMI/walet.htm#DBIMI160
  14. File system access to appropriate user: This can be achieved by granting right permissions to files and folders.
  15. Access of protected ports: http://docs.oracle.com/cd/E24628_01/install.121/e24089/firewalls.htm
  16. IP Filtering: http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html

Parent topic: Security Features