Warning: This page has not been updated in over over a year and may be outdated or deprecated.
administration:security
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
administration:security [2015/12/21 16:47] – ↷ Links adapted because of a move operation demiankatz | administration:security [2020/06/04 17:23] – [Locking Down Solr] demiankatz | ||
---|---|---|---|
Line 19: | Line 19: | ||
===== Locking Down Solr ===== | ===== Locking Down Solr ===== | ||
- | To ensure that your data is secure, it is advised that you lock down the solr server to only be accessible from your local webserver. The default port is 8080. This port should be locked down to eliminate security threats to your data. | + | To ensure that your data is secure, it is advised that you lock down the solr server to only be accessible from your local webserver. The default port is 8983 in VuFind 7 and newer, |
==== Changing the Solr Port Number ==== | ==== Changing the Solr Port Number ==== | ||
- | If necessary, you can change the port number used by Solr by following these steps: | + | === 1. Reconfigure |
- | === 1. Reconfigure Jetty === | + | If using VuFind 3.0 or newer, the Solr port number is controlled by the SOLR_PORT environment variable; just set this before [[administration: |
- | Edit the file solr/ | + | If using VuFind 2.x or earlier, you can change the port number used by Solr by editing |
- | + | ||
- | <code xml> | + | |
- | <Set name=" | + | |
- | </ | + | |
=== 2. Reconfigure VuFind === | === 2. Reconfigure VuFind === | ||
- | Edit the solr.hosturl setting in the import/ | + | Edit the solr.hosturl setting in the import/ |
< | < | ||
Line 53: | Line 49: | ||
</ | </ | ||
- | === 3. Restart | + | === 3. Restart |
- | + | ||
- | Restart the VuFind process so the changes can take effect; i.e., in Linux, switch to the VuFind directory and run: | + | |
- | + | ||
- | <code bash> | + | |
- | ./vufind.sh restart | + | |
- | </ | + | |
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | ===== Locking Down the Admin Panel (VuFind 1.x) ===== | + | |
- | + | ||
- | VuFind 1.x includes an administration module (accessible through http:// | + | |
- | * By default, this has an administrative password of " | + | [[administration:starting_and_stopping_solr# |
- | * There is a rule in the http-vufind.conf Apache configuration file in the root of your VuFind installation which specifies which directory needs to be password-protected. | + | |
- | * The Admin module is a good candidate for SSL protection (to prevent your access password from being guessed). | + | |
- | * If you do not plan on using the Admin module, you can disable it completely by removing the code in web/ | + | |
- | * Starting with VuFind version 1.1, it is possible to disable the Admin module from within config.ini, and the module is disabled by default. | + | |
- | ===== Locking Down the Admin Panel (VuFind 2.x) ===== | + | ===== Locking Down the Admin Panel ===== |
- | The admin module in VuFind | + | VuFind |
===== Securing User Credentials ===== | ===== Securing User Credentials ===== | ||
- | VuFind stores some user information in its database. | + | VuFind stores some user information in its database. |
---- struct data ---- | ---- struct data ---- | ||
---- | ---- | ||
administration/security.txt · Last modified: 2024/05/22 17:27 by demiankatz