[opencms-dev] Securing tomcat
Christoph Kukulies
kuku at physik.rwth-aachen.de
Fri Nov 12 12:37:40 CET 2021
After having been off from working with Opencms for some time I’m turning back again and was about starting a fresh install of Opencms12.
I installed tomcat9 on my ubuntu box and started install with mysite.org:8080/setup <http://mysite.org:8080/setup> and after having learnt again that I have to use the right mysql/mariadb password (which ist the „root“-password, right?, not the Opencms password), installation is running while I’m typing this.
But what distresses me a bit is that the connection is unsecure. My server is hosted outside and I’m doing this from home. I allowed my IP in the firewall so I can access port 8080 from my home machine, but the fact that the connection is unsecure, leaves a bad feeling.
I would rather secure my tomcat (haproxy later). Anyone knowing how to do this quickly?
Another thing: I believe to recall that I entered the same passwords for root and root(opencms). Is the opencms user really „root“ as filled in in the setup
fields or wasn’t it „admin"? Funnily the password doesn’t work to log into the opencms workplace.
Can I set the password manually in some configuration files?
Help appreciated.
—
Christoph
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opencms.org/pipermail/opencms-dev/attachments/20211112/f5be5f38/attachment.htm>
More information about the opencms-dev
mailing list