3 Replies Latest reply on Nov 14, 2013 10:42 AM by mcalautti

    does anyone know how to disable the downloading of JMXInvokerServlet and EJBInvokerServlet

    mcalautti

      newbie 

       

       

      we need to disable

       

      http://<FQDN>:7001/invoker/EJBInvokerServlet

      http://<FQDN>:7001/invoker/JMXInvokerServlet

       

      for security reasons.. right now if I browse there it allows me to download each file.

       

      I thought if I commented out the sections related to these in the web.xml, that it would disable it..

      but it didnt.

       

      we are running jboss-6.1.0.Final

       

      pwd
      /opt/jboss


      find . -name web.xml* -exec egrep -il "EJBInvokerServlet|JMXInvokerServlet" {} \;
      ./server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml
      ./server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml.11.05.2013
      ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml
      ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml.11.05.2013

       

      diff ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml.11.05.2013
      37c37
      <     <!-- <servlet>
      ---
      >     <servlet>
      53,54c53
      <   -->
      <    <!-- <servlet>
      ---
      >     <servlet>
      70,71c69
      <   -->
      <    <!-- <servlet>
      ---
      >    <servlet>
      83d80
      <  -->
      159c156
      <     <!-- <servlet-mapping>
      ---
      >     <servlet-mapping>
      163,164c160
      <   -->
      <     <!-- <servlet-mapping>
      ---
      >     <servlet-mapping>
      168,169c164
      <   -->
      <    <!-- <servlet-mapping>
      ---
      >    <servlet-mapping>
      173,174c168
      <  -->
      <    <!-- <servlet-mapping>
      ---
      >    <servlet-mapping>
      178d171
      <  -->
      183c176
      <    <!-- <servlet-mapping>
      ---
      >     <servlet-mapping>
      187d179
      <   -->