Microsoft 4.5.X Manual Do Utilizador
Page 77 of 94 - Administration Manual - Copyright 2007 - Lieberman Software Corporation - All Rights Reserved
Application Security
Overview
The Account Reset Console is a password management application and as such must be
security-aware. ARCWeb is capable of protecting you against SQL injection attacks and
unauthorized web access by allowing you to control your own timeout parameters and
permissible character sets.
security-aware. ARCWeb is capable of protecting you against SQL injection attacks and
unauthorized web access by allowing you to control your own timeout parameters and
permissible character sets.
Security configuration is located under the “Configuration” menu item, in the “Security” tab.
The security configuration can be managed by users with super-user account privileges.
The security configuration can be managed by users with super-user account privileges.
Managing Application Security
The Account Reset Console allows you to specify your own settings for application security
without having to modify your web server installation.
without having to modify your web server installation.
•
Session timeout – This is the number of minutes before the web server will expire the
session object which it uses to track a user’s login session. When the session expires
the application will automatically log the user out when they next click on a link or
session object which it uses to track a user’s login session. When the session expires
the application will automatically log the user out when they next click on a link or