Security Considerations
The system administrator should restrict access to the following files and directories:
JNDI Properties Files. All properties defined in the JNDI properties file used to create an adapter connection will be copied into the JVM's system properties list. This feature provides the adapter with a certain degree of flexibility in how it may interact with the application server. It also provides a mechanism through which arbitrary string values can be introduced into a running JVM.
Due to the nature of this feature, access should be restricted to all JNDI properties files used with Adapter for Enterprise Javabeans connections. Certain users and processes will need to read these files (the Integration Server process, for instance). Other users will need to create and modify these files. The system administrator should use the features of the local operating system to restrict access to these files to only those users.
Classes and Supported Directories.The
WmEJBAdapter\code\classes directory and, in particular, the
WmEJBAdapter\code\classes\com\wm\adapter\wmejb\connection\impl\supported directory contain façade classes that determine which application server vendors and versions are supported. Adding or removing class files from the supported directory could have undesired consequences. The system administrator should use the features of the local operating system to restrict access to both of these directories.