Hi, Obviously JBoss opens up a number of TCP ports. I'm wandering what security risks there may be associated with each of these, assuming the machine running JBoss is accessible via the Internet. In my configuration, the following ports are being opened up. (I'm using Tomcat with JBoss in separate processes.) 1099 - RMI registry 3158 - ? 3159 - ? 3165 - ? 4444 - RMI Object Port 5555 - ? 7990 - ? 8000 - Tomcat HTTP connector 8007 - Tomcat Ajp23 connector 8082 - JMX 8083 - ? Are there any security risks with these ports? Should I take special precautions to disable some of these? If so, which ones? The issues with port 8000 (Tomcat HTTP connector) are obvious. I assume the issues with Ajp23 are similar, even though the protocol is different. Do most people turn the JMX interface off for deployment? Or is there a way to limit the IP addresses which can access the JMX information? What about the other ports? (I think one or more of them is used by SpyderMQ. Any concerns there?) Thanks for any help, - Keith Keith L. Musser Integrated Dynamics, Inc. 812-371-7777 email: [EMAIL PROTECTED] -- -------------------------------------------------------------- To subscribe: [EMAIL PROTECTED] To unsubscribe: [EMAIL PROTECTED] List Help?: [EMAIL PROTECTED]
