Skip to main content

Security Baseline Guidelines

Storing Connection Data

By default, the epgw add command will store the connection data in a plain text JSON file which is stored on your local machine. This connection data may include credentials for remote systems. We recommand you protect these files using techniques such as access control lists and full-disk encryption technologies such as BitLocker.

Eggplant Gateway can be configured to read connection data from Eggplant Functional's connection list. We recommend you configure Eggplant Functional to store passwords in your Windows Credential Manager or macOS Keychain.

Securing connections to Eggplant Gateway

By default, the epgw vnc command will launch a VNC server which listens for incoming connections on the IPv4 loopback address (127.0.0.1). Any program which can connect to this IP address can connect to your remote System Under Test (SUT).

Configure Eggplant Gateway to require a password by providing the --password [password] option to further restrict the access to your SUT through Eggplant Gateway.

For more information, see the epgw vnc command in the CLI Reference.