Countermeasures against application-layer attacks

Akihiko Sano · 2024-01-31T10:14:50+00:00

There was an error rendering this rich post.

I want to be able to run the DP and xECM APIs from the Internet.
IP limit with FireWall.
Does DP and xECM have application layer attack prevention?
It protects against application-layer attacks such as SQL injection, XSS, and CSRF.
Do I need to place the Web Application Firewall on the front of the OpenText server?
Thank you and best regards,

Find more posts tagged with

API

Note:

If there are Accepted Answers, those will be shown by default. You can switch to 'All Replies' by selecting the tab below.

Accepted answers

All comments

Ian Archibald

Hi Akihiko,

I don't believe this question is best suited for the TeamSite support team. We do not make use of these API's.

Can you either ask your question to the correct (product) group, or open a case with support.

Thanks

Ian

Karen Weir

Thanks Ian

Akihiko, I moved your post to our Extended ECM area of the community.

I want to be able to run the DP and xECM APIs from the Internet.
IP limit with FireWall.
Does DP and xECM have application layer attack prevention?
It protects against application-layer attacks such as SQL injection, XSS, and CSRF.
Do I need to place the Web Application Firewall on the front of the OpenText server?

Akihiko Sano

Hi, lan.
I'm sorry for the mistake.

Hi, Karen.
Thank you for moving.
We will ask questions in this group from now on.

Thank you and best regards
Akihiko

Greg Griffiths

The product does provide some checking e.g. is a node id a number etc, as well as some of the configuration elements, see OTCS Hardening Guide as well here.

At the end of the day, the level of "security" you require depends very much on the client requirements so perhaps a penetration test would give you topics to look at.

OT offerings are used in very secure industries including finance, gov, military and intel so they have the core elements needed for those accreditation.

Akihiko Sano

Hi Greg,
Thank you for your answer.
I will run penetration tests and vulnerability diagnostic tools.
By the way, have OT (especially Extended ECM, DP and Directory Service) been released after running penetration tests and vulnerability diagnostics?
Also, does OT regularly run penetration tests and vulnerability diagnosis tools after release, and provide security patches when problems are detected?
Thank you and best regards
Akihiko

Greg Griffiths

I believe they do, but I will leave one of their team to comment on the details. If there is a known CVE there is often a response from OT for the relevant applications letting us know what the impact / risk / fix is.

There is a little information at https://www.opentext.com/about/opentext-privacy-center .