Securing Dispatchers
Users of IBM® Cognos® software can enter XPath search paths in the address field of a Web browser or in hyperlinks. The users can input any search path syntax against search path parameters in the user interface. IBM Cognos software relies on the Content Manager Access Control List (ACL) to check the objects that are returned to the user.
In some cases, malicious users could see the dispatcher name in IBM Cognos Connection. This can pose a security risk, even though the users cannot click the dispatcher name or perform any actions on it.
To avoid this type of security risk, change the default dispatcher name. The default dispatcher name is computer_name:9300 and it can be changed to, for example, server1 to mask the port number and host name. For more information, see Renaming dispatchers
For more information about other security technics used in IBM Cognos Connection, see the IBM Cognos Business Intelligence Architecture and Deployment Guide.