Security

Team-Fly

If you are developing an interface that can be accessed from outside the firewall (an ITS report is a typical example), you must ensure that 'company proprietary' documents and data cannot be accessed. This point may sound obvious, but you'd be surprised at the controversy and discussions that it can bring up. Do you want your product's availability and lead times posted for your competitors to view? Are your customers comfortable with having access to their data on the Web, where it might possibly be accessed by a malicious hacker (one example being the hacker who broke into a widely used site and posted thousands of Visa numbers)?

Numerous Web robots regularly search and index many of the publicly available Web servers. The robots provide the data pools that make Web search services like Excite work. If you do not want specific pages on your public server to be available to these search engines, you can create a /robots.txt file in your local URL. This text file contains two basic pieces of data: User-agent, which tells the robot you want to restrict something, and Disallow, which describes what you want to disallow. In the following example, we restrict all Web robots (sometimes called spiders) from visiting any URL starting with /myhomepage.

User-agent: * Disallow: /myhomepage

If you are developing some Java code to work through the Orbix server, you will probably have to consider restricting who can access the server. This process is done through the Orbix server setup (see Chapter 4, 'Setting up the Development and Operating Environments'), and allows you to restrict both who has access to the server and the methods that can be used. In a normal production environment, even if it is for use behind a firewall, you will want to include some restrictions in here. Otherwise, you run the risk of some clever Java programmer in your company gaining access to data that he or she should not have.


Team-Fly


Java & BAPI Technology for SAP
Java & BAPI Technology for SAP
ISBN: 761523057
EAN: N/A
Year: 1998
Pages: 199

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net