Today it is essential to have minimum levels of security when deploying applications. Performing it correctly can be a complex task, which development teams are not accustomed to face.
One of the main challenges is knowing exactly what should be done, what risks to mitigate and how.
In this talk, we will present an Open Source solution designed for GeneXus applications that seeks to facilitate and ensure (without the need for change in programming) the correct deployment of web applications generated for Java or .Net, as well as REST services for mobile applications, compatible with different web servers and databases.
Among the main configurations are:
- Encrypted traffic ALWAYS. "HTTPS"
- Secure HTTP header configuration
- Secure cookie settings
- Secure SSL configuration (TLS 1.2+. Secure Ciphers)
- Software versions concealment (GeneXus, Webserver, etc.).
- Prevention of unsafe deployment configurations of GeneXus applications (Developer Menu, Prompts, etc.)
- Latest versions of opensource products (Apache and OpenSSL)
- Strengthening good deployment practices
- Execution on several servers at once (Load Balancing)
Note: This text was automatically translated.