Security Baseline Guidelines
Storing Connection Data
By default, the epgw add
command will store the connection data in a plain text JSON file which is stored on your local machine.
This connection data may include credentials for remote systems. We recommand you protect these files using techniques such as
access control lists and full-disk encryption technologies such as BitLocker.
Eggplant Gateway can be configured to read connection data from Eggplant Functional's connection list. We recommend you configure Eggplant Functional to store passwords in your Windows Credential Manager or macOS Keychain.
Securing connections to Eggplant Gateway
By default, the epgw vnc
command will launch a VNC server which listens for incoming connections on the IPv4 loopback address
(127.0.0.1
). Any program which can connect to this IP address can connect to your remote System Under Test (SUT).
Configure Eggplant Gateway to require a password by providing the --password [password]
option to further restrict the access to your SUT through Eggplant Gateway.
For more information, see the epgw vnc
command in the CLI Reference.