Section
12.1.1
Top Level
Sub Level
General
Configure the Web server and application server mappings and connectors to only serve the types of files your application intends to serve. Ideally, it would define what is allowed, and everything else would be denied.
Coldfusion
The ColdFusion Sandbox enables you to place access security restrictions on files, directories, methods, and data sources. Sandboxes make the most sense for a hosting provider or corporate intranet where multiple applications share the same server. Enable Sandbox Security. Be warned that a sandbox must be configured prior to use as, by default, all code in all directories will execute without restriction. Code in a directory and its subdirectories inherits the access controls defined for the sandbox.
Django
See Django's deployment documentation for example configurations using different deployment options.
Java
Configure the Java Sandbox to properly restrict what resources your Web application can access, particularly any third-party libraries you are employing.
Natural Webagent
This is handled by the server admins.