AEM_6.1_Remove CRX development bundles


Recommendation

Uninstall following bundleS.
These development OSGi bundles should be uninstalled on both author and publish productive systems before making them accessible.
a.       Adobe CRXDE Support (com.day.crx.crxde-support)
b.       Adobe Granite CRX Explorer (com.adobe.granite.crx-explorer)
c.        Adobe Granite CRXDE Lite (com.adobe.granite.crxde-lite)

CRX development bundle related findings

Finding ID
JVM Name
Total risk
Effort to Fix
CRX1
UNINSTALL Adobe CRXDE Support (com.day.crx.crxde-support)

High
Low
CRX2
Adobe Granite CRX Explorer (com.adobe.granite.crx-explorer)

High
Low
CRX3
Adobe Granite CRXDE Lite (com.adobe.granite.crxde-lite)

High
Low

AEM 6.1_Performance tuning


Recommendation

Some OSGI settings are set by default to allow easier debugging of the application. These need to be changed on your publish and author productive instances to avoid internal information leaking to the public.

For each of the following services the specified settings need to be changed:

Day CQ HTML Library Manager:

§  Enable Minify (to remove CRLF and whitespace characters).
§  Enable Gzip (to allow files to be gzipped and accessed with one request).
§  disable Debug
§  disable Timing

Day CQ WCM Debug Filter:

§  uncheck Enable

Day CQ WCM Filter:

§  on publish only, set WCM Mode to "disabled"

Apache Sling Java Script Handler:

§  disable Generate Debug Info

Apache Sling JSP Script Handler:

§  disable Generate Debug Info
§  disable Mapped Content