SSL directory permissions guidelines
Security
- Agent authentication
- Bamboo cookies
- Best practices for Bamboo security
- Securing Bamboo against potential SSRF attacks
- Securing your remote agents
- Serialization protection methods
- Configuring XSRF protection
- Managing trusted keys
- System-wide encryption
- Repository-stored Bamboo Specs security
- Securing a database password
- Encrypting passwords in server.xml
- Requiring personal access token expiration
- Configuring the allowlist
- SSL directory permissions guidelines
- Configure secure administrator sessions (websudo)
On this page
Related content
- Creating issues and sub-tasks
- How to automatically transition parent linked issue when all child linked issues in the same status using Automation
- Create issues and sub-tasks
- Automation Rule Not Updating Cascade Field Correctly
- Creating issues using the CSV importer
- Cannot delete an issue type and unable to find issues associated to a deleted issue type
- Moving an issue
- Configuring sub-tasks
- Adding, editing, and deleting an issue type
Since Bamboo 9.6, application nodes use gRPC for the inter-node commutation. To ensure secure data exchange, the gRPC layer uses mTLS for which certificates and keys are laying in the `<bamboo-shared-home>/ssl.` To enhance the security, we recommend the `SSL` directory should have manually restricted access.
The directory and all its content should be accessible only by authorized users/services, specifically the ones running the application nodes, to allow nodes free read/write/execute access. No other users or services should have access to this directory.
Last modified on Nov 28, 2024
Related content
- Creating issues and sub-tasks
- How to automatically transition parent linked issue when all child linked issues in the same status using Automation
- Create issues and sub-tasks
- Automation Rule Not Updating Cascade Field Correctly
- Creating issues using the CSV importer
- Cannot delete an issue type and unable to find issues associated to a deleted issue type
- Moving an issue
- Configuring sub-tasks
- Adding, editing, and deleting an issue type
Powered by Confluence and Scroll Viewport.