Separate Spotfire web admin interface from default user interface port 80/443 to increase security

Problem

At the moment the default web admin interface is using the same interface as the default user interface port 80/443. With this there will always be a security risk and with the recent CVE that makes cross-site scripting (XSS) attack possible you are forced to roll out a service pack. If the CVE was never reported this would have been a serious gap in security. And there is also no guarantee there will be no future XSS possible.

Suggestion

The only way to prevent this is to separate the web admin interface from the default interface port 80/443. With that admins are able to setup their load balancers and firewalls differently for the web admin interface and shield the web admin interface from a user-LAN.

spotfire-web.png

Attach files

Enter a subject

Admin

Miguel Díez

Reply
| Feb 20, 2020

Hi Bart,
We agree is good to have them separated. We can make it configurable.
Thanks

0 reply Hide replies

This document (including, without limitation, any product roadmap or statement of direction data) illustrates the planned testing, release and availability dates for Spotfire products and services. It is for informational purposes only and its contents are subject to change without notice. Planning to implement - generally 6-12 months out. Likely to Implement - generally means 12-18 months out. Copyright © 2014-2023 Cloud Software Group, Inc. All Rights Reserved. Cloud Software Group, Inc. ("Company") follows the EU Standard Contractual Clauses as per the Company's Data Processing Agreement. Terms of Use | Privacy Policy | Trademarks | Patents | Contact Us

Please enter your email address

RELATED IDEAS

Separate Spotfire web admin interface from default user interface port 80/443 to increase security