Bug 724174 (BRMS-117) - Documentation task - need to include this in renotes for BRMS GA
Summary: Documentation task - need to include this in renotes for BRMS GA
Keywords:
Status: CLOSED NEXTRELEASE
Alias: BRMS-117
Product: JBoss Enterprise BRMS Platform 5
Classification: JBoss
Component: Documentation
Version: 5.0.0.CR2
Hardware: Unspecified
OS: Unspecified
high
unspecified
Target Milestone: ---
: 5.0.0 GA
Assignee: Dana Mison
QA Contact:
URL: http://jira.jboss.org/jira/browse/BRM...
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2009-05-12 13:39 UTC by Len DiMaggio
Modified: 2010-12-10 16:25 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2010-03-02 18:04:49 UTC
Type: Task
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Bugzilla 724563 0 high CLOSED CLONE - Documentation task - need to include this in renotes for BRMS GA 2021-02-22 00:41:40 UTC
Red Hat Issue Tracker BRMS-117 0 None None None Never

Internal Links: 724563

Description Len DiMaggio 2009-05-12 13:39:06 UTC
Affects: Documentation (Ref Guide, User Guide, etc.)
Date of First Response: 2009-05-18 05:34:46
securitylevel_name: Public

We should add this to the re notes:

The BRMS workspace grants full trust to a user logged into the system, therefore it is necessary to isolate the EAP instance where BRMS is deployed from production servers.

Comment 2 Dana Mison 2009-05-18 09:34:46 UTC
Added known issue:

Full-trust is granted to logged in users. 

The BRMS workspace grants full trust to users logged in to the BRMS Platform. It is recommended 
that you isolate the Application Server instance where the BRMS Platform is deployed from other 
production servers.

The following security precautions allow you to work with the BRMS Platform full trust model without 
impairing your production environment: 

• Install the BRMS Platform server on a non-production EAP instance without co-located applications 
• Install the BRMS server in a non-production trust zone, with the trust level of an employee 
workstation. 
• Define least-privilege permissions for the database user account being used for the BRMS 
database. 
• Define least-privilege permissions for the JVM process running the BRMS Platform server at the OS 
level. 
Additional information: 

NOTE - no JIRA is known for referal


Comment 4 Len DiMaggio 2010-12-10 16:25:11 UTC
Link: Added: This issue Cloned to BRMS-510



Note You need to log in before you can comment on or make changes to this bug.