In any application environment, access to directories and files can pose a security risk. To provide a tightly secured environment in which to run the AppServer, do not allow client access (using remote log ins, shells, copying, or file sharing) to directories that contain:
AppServer startup/shutdown scripts
AppServer log files
Application code to be executed by AppServer agents
AppServer startup/shutdown scripts