Home » Fusion Middleware & Colab Suite » Weblogic & Application Server » Report Server Security (Oracle 9i AS Windows)
Report Server Security [message #359091] Thu, 13 November 2008 13:01 Go to next message
smunir362
Messages: 310
Registered: September 2007
Senior Member
I am runing Application server. I am using cgicmd.dat file for defining keys but I am experencing a problem that everyone can hit this URL in his browser and see all my username and passwords.

http://server:port/reports/rwservlet/showmap

Please guide me how I overcome this problem.

Regards
Re: Report Server Security [message #359103 is a reply to message #359091] Thu, 13 November 2008 13:44 Go to previous messageGo to next message
kmmfoo
Messages: 38
Registered: June 2005
Location: massachusetts
Member
There is a directory in your reports server called "templates". You can go into that directory and remove the file called "showmap.htm". You can also delete or modify any of the other commands that could be executed by deleting or modifying the corresponding "[commandname].htm" file for the command.

HTH...
Re: Report Server Security [message #359461 is a reply to message #359103] Sun, 16 November 2008 12:43 Go to previous message
smunir362
Messages: 310
Registered: September 2007
Senior Member
have anyone experiance to configure
RedirectMatch or Mode rewrite directives in apache.
Previous Topic: OAS and OID integration
Next Topic: Run Forms & Reports on Oracle Application server 10g R3
Goto Forum:
  


Current Time: Thu Mar 28 04:31:48 CDT 2024