I was just thinking about this.
Some firewalls will filter out by URL. I am thinking about just disabling
this URL from everyone including the SOAP admin because once your service is
deployed, you never need to modify it and it doesn't run as a process.
But what about the ServiceManagerClient. All you need to do is be able to
hit the rpcrouter to deploy and undeploy the SOAP services. I don't think
that a firewall could block this out because you need to provide access to
your rpcrouter in order to provide SOAP services.
I have also come to the conclusion that deploying services just writes to a
file somewhere because if you copy your SOAP directory from one server to
another, the services are already deployed on that second server. If this
is true, you may be able to use some OS level security on those files to
prevent people from undeploying your services.
-----Original Message-----
From: Tapan Nanawati [mailto:[EMAIL PROTECTED]]
Sent: Monday, July 16, 2001 2:53 PM
To: [EMAIL PROTECTED]
Subject: How to block the Admin client ?
How can i block my admin client or add a passowrd to
it?
http://servername:8080/soap/admin
As of now any body on the internet can go and
*undeploy* my service. How can I make it read only
atleast or best to block it with a password.
cheers
Tapan
__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail
http://personal.mail.yahoo.com/
