Section 4.1, Protecting the Administration Console
Section 4.2, Enabling Secure Cookies
Section 4.3, Configuring the 256-bit SSL Communication
Section 4.4, Disabling Phishing
Section 4.5, Configuring Whitelist
Section 4.6, Preventing IP Spoofing
Section 4.7, Preventing the Error Page to Show the Tomcat Version
Section 4.8, Setting an Optimal Secure Socket Layer Configuration With Ciphers
Section 4.9, Preventing Error Messages to Show the Failure Reason on Browsers