HOPEX Administration
>
Technical Articles (EN)
>
Securing the platform
Securing the platform
Introduction
Securing the access to the application
Activating SSL on the website
Disabling SSL v2, v3, TLS 1.0 and TLS 1.1, Triple DES 128, RC4 128/128
Block the TRACE HTTP request
Remove the default install page in IIS
Securing the RDP access (Terminal Services)
Configuring the firewall
Configuring the default error page of the application to hide application errors
Protection against ClickJacking
Securing the ASP.NET session cookies
Hide ASP.Net version header
Remove IIS Server version HTTP Response Header
Strict-Transport-Security HTTP header
Manage content type options
Restrict Cross Origin Ressource Sharing to Trusted Domains
Search engine protection
Securing the application
Hiding the error details
Activating the automatic logoff
Hiding the information when entering the wrong credentials
Manage password activities
Documents Upload
Modules
This site works best with JavaScript enabled