THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
Log in
Skip to sidebar
Skip to main content
Apache Software Foundation
Spaces
Hit enter to search
Help
Online Help
Keyboard Shortcuts
Feed Builder
What’s new
What’s new
Available Gadgets
About Confluence
Log in
OFBiz Project Open Wiki
Pages
Space shortcuts
How-to articles
Child pages
Technical Documentation
Keeping OFBiz secure
About retire.js
How to Secure HTTP Headers
The infamous Java serialization vulnerability
Browse pages
Configure
Space tools
View Page
A
t
tachments (0)
Page History
Page Information
View in Hierarchy
View Source
Delete comments
Export to PDF
Export to Word
Copy Page Tree
Pages
…
Home
Documentation
Technical Documentation
Keeping OFBiz secure
Page Information
Title:
Keeping OFBiz secure
Author:
Jacques Le Roux
Nov 30, 2015
Last Changed by:
Jacques Le Roux
Feb 10, 2022
Tiny Link:
(useful for email)
https://cwiki-test.apache.org/confluence/x/OdWnAw
Export As:
Word
·
PDF
Incoming Links
OFBiz Project Open Wiki (3)
Page:
Apache OFBiz Technical Production Setup Guide
Page:
Demo and Test Setup Guide
Page:
Technical Documentation
Hierarchy
Parent Page
Page:
Technical Documentation
Children (3)
Page:
About retire.js
Page:
How to Secure HTTP Headers
Page:
The infamous Java serialization vulnerability
Labels
Global Labels (6)
security
xss
exploit
vulnerability
cve
penetration
Recent Changes
Time
Editor
Feb 10, 2022 16:18
Jacques Le Roux
View Changes
Tomcat 9 & AJP update
Feb 10, 2022 16:08
Jacques Le Roux
View Changes
Adds Tomcat 9 & AJP
Jan 14, 2022 14:09
Jacques Le Roux
View Changes
Refers to security page rather than download
Jan 02, 2022 18:14
Jacques Le Roux
View Changes
More about CI and alike
Jan 02, 2022 18:06
Jacques Le Roux
Remove OWASP dependencies checking reference
View Page History
Outgoing Links
External Links (17)
beefproject.com/
https://tomcat.apache.org/tomcat-9.0-doc/security-howto.htm…
https://ofbiz.apache.org/security.html
www.apache.org/security/
open.bekk.no/retire-js-what-you-require-you-must-also-retir…
https://en.wikipedia.org/wiki/Security_AppScan
https://spotbugs.github.io/
https://ofbiz.apache.org/download.html
https://portswigger.net/burp/communitydownload
https://ofbiz.apache.org/download.html#vulnerabilities
https://tomcat.apache.org/security-9.html#Fixed_in_Apache_T…
https://github.com/apache/ofbiz-framework
https://cyh.herokuapp.com/cyh
https://ofbiz.apache.org/
https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Proj…
https://tomcat.apache.org/tomcat-9.0-doc/config/ajp.html#In…
https://media.defense.gov/2020/Jun/09/2002313081/-1/-1/0/CS…
OFBiz Project Open Wiki (5)
Page:
About retire.js
Page:
OFBiz Security Permissions
Page:
How to Secure HTTP Headers
Page:
The infamous Java serialization vulnerability
Page:
Apache OFBiz PMC Members and Committers
Overview
Content Tools
Apps
{"serverDuration": 414, "requestCorrelationId": "9ded90604672aba0"}