search cancel

Exposing Server ip in lisaFrameRemoteIP

book

Article ID: 253835

calendar_today

Updated On:

Products

Service Virtualization

Issue/Introduction

Our service is sending response/ notification to external team url ,however while sending the response from "POST request" below parameter which is exposing our server ip address as well.

Content-Type: application/json
lisaFrameRemoteIP: 10.11.xx.xxx
lisaFrameRoot: true
lisaFrameID: 329caf40-5b1a-11ed-8xxx-06877ffd1xxx

 

We have executed multiple time to validate if it is in Meta of response vsm but I guess this parameter is added by Devtest itself. 

There has been a security issue at our organization level highlighting this issue. We want to hide our server details to external and need to remove these lisa frame values from send notifications/ response by modifying any properties in Ca Devtest or config.

Environment

Release : 10.7

Resolution

This happens due to the lisa.pathfinder.on setting.  Please turn off the pathfinder with below changes.

On the Simulator/Coordinator/Registry/Workstation server machines:

1. Open the file local.properties in a text editor

2. Add the following line

lisa.pathfinder.on=false

3. Save the file and restart DevTest Services

      After these changes, lisaframeRemoteIP properties will be removed from request details.