Security Baseline Guidelines
Storing Connection Data
By default, the epgw add
command will store the connection data in a plain text JSON file which is stored on your local machine. This connection data may include credentials for remote systems. We recommand you protect these files using techniques such as access control lists and full-disk encryption technologies such as BitLocker.
Eggplant Gateway can be configured to read connection data from Eggplant Functional's connection list. We recommend you configure Eggplant Functional to store passwords in your Windows Credential Manager or macOS Keychain.
Securing Connections to Eggplant Gateway
By default, the epgw vnc
command will launch a VNC server which listens for incoming connections on the IPv4 loopback address (127.0.0.1
). Any program which can connect to this IP address can connect to your System Under Test (SUT).
Configure Eggplant Gateway to require a password by providing the --password [password]
option, in order to restrict the access to your SUT through Eggplant Gateway.
For more information, see the epgw vnc
command in the CLI Reference.