Confluence 4.0 : Configuring Confluence Security
This page last changed on Jan 09, 2011 by
smaddox
.
This section gives guidelines on configuring the security of your Confluence site.
Other topics:
For information about user management, groups and permissions, please refer to the
internal security overview
.
For an overview of Confluence application security, see the page on
Confluence security
.
Setting up a Secure Confluence Site
Confluence Cookies
Configuring Secure Administrator Sessions
Using Fail2Ban to limit login attempts
Securing Confluence with Apache
Using Apache to limit access to the Confluence administration interface
Enabling or Disabling Public Signup
Managing External Referrers
Excluding external referrers
Hiding external referrers
Ignoring External Referrers
Best Practices for Configuring Confluence Security
Hiding the People Directory
Configuring Captcha for Spam Prevention
Hiding External Links From Search Engines
Configuring Captcha for Failed Logins
Configuring XSRF Protection
User Email Visibility
Anonymous Access to Remote API
Running Confluence Over SSL or HTTPS
Connecting to LDAP or JIRA or Other Services via SSL
Configuring RSS Feeds
Document generated by Confluence on Sep 19, 2011 02:40