Thoughts and Tutorials about Continuous Integration, Application Integration, SOA, IT Architecture, WebSphere and Liferay

Jun 4, 2009

Oracle 11 g with WebSphere 6.0

Officially the Oracle 11g JDBC driver no longer support Java 1.4 (which is used by WebSphere 6.0).
But you can use an Oracle 10g driver to access databases on an Oracle 11g database server from WebSphere Application Server 6.0.2 .
But some prerequisite need to be fullfiled:

  • WebSphere Fixlevel 6.0.2.29 or above needs to be installed
  • The datasource custom property oracle9iLogTraceLevel needs to be "null" or blank
Link:
http://www-01.ibm.com/support/docview.wss?rs=180&uid=swg21314477

Jun 3, 2009

Examples for security vulnerabilities of web applications

Last week i found a quite good PDF about security vulnerabilities of web applications .
Its a Document from IBM for their software AppScan. Which is a security-scanner for web-apps.
The doc contains several examples (e.g.: for cross-site-scripting, SQL Injection, Failure to Restrict URL Access, Improper Error Handling, ...).

Download it here:
http://eichelgartenweg.googlepages.com/107647_may_06appscan_final.pdf
[or google for it]