Security
Describes how to enable SSL and how to secure content.
- Unlocking a publication
Occasionally, you will be required to unlock a publication to troubleshoot publishing issues. - Securing Content Distribution
All servers in a content distribution group must have a way to recognize each other as trusted. - Hiding the Apache Tomcat server header
By default, Apache Tomcat discloses version information in its response headers, which constitutes a security vulnerability: specific version information (which may be cached in public databases such as Shodan) can be helpful to attackers. To prevent version information from being exposed, specify an alternative server header string in server.xml. - Enabling Secure Socket Layer (SSL) protocol for the Apache Tomcat web application server
Enabling the Apache Tomcat web application server to support the Secure Socket Layer (SSL) protocol and make it capable to manage secure connections (HTTPS), is a prerequisite. In most cases, the secure connection is already enabled in Apache Tomcat for other applications. If not, you must obtain and load the appropriate SSL certificates.