DOT NET & J2EE

From: avishver (yram_at_netvision.net.il)
Date: 10/24/03

  • Next message: alexandre: "Terminal Services Auditing?" 
    Date: Fri, 24 Oct 2003 17:15:10 +0200 (IST)
To: focus-ms@securityfocus.com

    Hello,

      I have an apllication that uses browser on XP for the presentation,travel
       to IIS6 on WIN03 for presentation logic, and ends up on
       IBM Websphere on IBM MainfraMe: EJB's for the business logic.
      The user authenticates against Active Directory 2003 when activating the
    browser.

      Several questions froM security point of view about the
       dot net <--> websphere connection:

       - What are the pros & cons to use MQseries / HTTP / RMI bridge ?
       - What is the practical way to iMpleMent end to end user id propogation:
           kerberos ticket ? ssl client certificate ? plain userid ?
          Note that on the websphere side I would like to use
           role base access control on the EJBs, and yet using the
           authenticated uid for authorization checking.
       - What is the preffered audit MechanisM that will be able to
           give unified audit trail on both environMents.

    Thanks alot

    Avi Shvartz

       
    <<< You can't be a real country unless you have a beer and an >>>
    <<< airline. It helps if you have some kind of a football >>>
    <<< team, or some nuclear weapons, but at the very least you >>>
    <<< need a beer. >>>
    <<< Frank Zappa >>>

    <<<< "Children", I say plainly, "watch out for the baobabs!" >>>>
    <<<< The Little prince by Antoine de Saint Exupery. >>>>

    ---------------------------------------------------------------------------
    FREE Whitepaper: Better Management for Network Security

    Looking for a better way to manage your IP security?
    Learn how Solsoft can help you:
    - Ensure robust IP security through policy-based management
    - Make firewall, VPN, and NAT rules interoperable across heterogeneous
    networks
    - Quickly respond to network events from a central console

    Download our FREE whitepaper at:
    http://www.securityfocus.com/sponsor/Solsoft_focus-ms_031015
    ---------------------------------------------------------------------------

  • Next message: alexandre: "Terminal Services Auditing?"

    Relevant Pages

    • OT udp port 138 BROWSER traffic
      ... This is off topic since it is really about Windows security, ... One such coincident event was a BROWSER Host announcement from an NT ... This is on a public network. ...
      (comp.os.linux.security)
    • Re: OT- what reg cleaner do you trust?
      ... when it comes to security. ... network is generally trustworthy while the PC user is not. ... are at risk and they're weighted down by bloated security ... vulnerability and browser bugs have been fixed over the years, ...
      (microsoft.public.vb.general.discussion)
    • SecurityFocus Microsoft Newsletter #50
      ... Subject: SecurityFocus Microsoft Newsletter #50 ... Specialist in Microsoft's Security Services Partner Program, ... Network Monitoring for Intrusion Detection ... Relevant URL: ...
      (Focus-Microsoft)
    • << SBS News of the week - Sept 26 >>
      ... And he points to the info you need to put the file on the server in the ... at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... by the firewall at risk. ...
      (microsoft.public.backoffice.smallbiz)
    • << SBS News of the week - Sept 26 >>
      ... And he points to the info you need to put the file on the server in the ... at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... by the firewall at risk. ...
      (microsoft.public.backoffice.smallbiz2000)