This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.
Security
See the following topics for information on the security configurations that are applicable to WSO2 products:
- Maintaining Logins and Passwords
- Securing Passwords in Configuration Files
- Configuring Transport Level Security
- Enabling Java Security Manager
- Using Asymmetric Encryption
- Using Symmetric Encryption
- Mitigating Cross Site Request Forgery Attacks
- Mitigating Cross Site Scripting Attacks
- Enabling HostName Verification
- Configuring TLS Termination
See the topics given below for information on applying security patches to your Carbon product.
WSO2 Security Patch Releases: Find the list of security patches that are applicable to each WSO2 product version from this web site.
/wiki/spaces/updates/overview: Find the instructions on applying security updates to WSO2 products.