Security Best Practices
This section outlines some security best practices to consider when using File Content Extraction.
- Keep File Content Extraction Up to Date. New releases may include security updates, including updates to third-party libraries. See Third-Party Library Upgrade Policy.
- Protect the Temporary Directory. File Content Extraction can write sensitive information to the temporary directory, so this location must be protected. See Protect the Temporary Directory.
- Run File Content Extraction with Minimal Privileges. In the event that a malicious actor causes File Content Extraction to behave dangerously, the potential damage is limited if File Content Extraction is running with fewer privileges. See Run Filter with Minimal Privileges.
-
Run Filter Out-of-Process. By default, Filter processes documents in a separate process, which protects the stability of the calling application. OpenText strongly recommends that you use this default.