System Architecture

Physical Server

CentOS Linux 7.9.2009 / Kernel 3.10.0-1160
Hostname: localhost.localdomain
Timezone: UTC+2 (Romania)

Server — quad NIC:
  eno1 → 10.0.0.2/24       "LocalEcomm" (internal e-comm LAN)
  eno2 → 192.168.0.234/24  "Local" (main office LAN)
  enp4s0f0, enp4s0f1        (additional NICs, not yet configured)

  Gateway: 192.168.0.1    DNS: 192.168.0.101

Software Stack

graph TB
    subgraph OS["CentOS 7.9 — 192.168.0.234"]
        subgraph Java["Java 8 Runtime"]
            TC["Apache Tomcat 9\nport 8080 HTTP\nport 8009 AJP\nport 8005 shutdown"]
            subgraph Apps["Deployed Webapps"]
                ANCORA["ancoraerp  ← primary ERP"]
                OTHER["ROOT / docs / examples\nhost-manager / manager"]
            end
            TC --> Apps
        end

        subgraph DB["Databases"]
            PG["PostgreSQL 11\nlocalhost:5432"]
            subgraph DBs["Databases"]
                PUBLIC["public  (tenant directory)"]
                MAXX["maxx  (~418 MB, main ERP data)"]
                MAXX_S["maxx_suport  (~87 MB)"]
            end
            PG --> DBs
        end

        subgraph Users["System Users"]
            UMAXX["maxx  (human admin — KDE desktop)"]
            UANCORA["ancora  (automation/cron scripts)"]
            UPOSTGRES["postgres  (DB server)"]
        end

        subgraph Remote["Remote Access"]
            ANYDESK["AnyDesk 7.0.2  (support)"]
            VSCODE["VS Code Server  (dev access)"]
        end
    end

    TC --> PG

    style ANCORA fill:#2d6a4f,color:#fff
    style PG fill:#336699,color:#fff
    style PUBLIC fill:#336699,color:#fff
    style MAXX fill:#336699,color:#fff
    style MAXX_S fill:#336699,color:#fff

Network Topology

graph LR
    INET["Internet"]

    subgraph LAN["Office LAN — 192.168.0.0/24"]
        GW["Gateway\n192.168.0.1"]
        DNS_SRV["DNS + SMTP Server\n192.168.0.101"]
        SERVER["ERP Server\n192.168.0.234:8080"]
        CLIENT1["Heavy LAN User\n192.168.0.29"]
    end

    subgraph ECOMM["E-Comm LAN — 10.0.0.0/24"]
        SERVER2["same machine\n10.0.0.2"]
    end

    INET --> GW
    GW --> SERVER
    CLIENT1 -->|HTTP :8080| SERVER
    EXTUSER["Remote User\n46.97.169.192"] -->|HTTP :8080 via internet| SERVER
    BOTS["Internet scanners\n204.76.x, 185.x..."] -->|port scanning| SERVER
    SERVER --> DNS_SRV

Storage Layout

/opt/tomcat/                     — Tomcat installation (also 'tomcat' user home)
  conf/server.xml                — Connectors: 8080/8009/8443
  webapps/ancoraerp/             — Deployed ERP (~2,000 JSP/HTML/JS files)
  logs/                          — catalina.out + access logs (7,702 files!)

/home/ancora/scripturi/          — Automation scripts
  daily_job.sh                   — Main cron automation
  1/ .. 7/                       — 7-day rolling backup store
    maxx.backup                  — pg_dump binary (~418 MB each)
    maxx_suport.backup           — pg_dump binary (~87 MB each)
    vacuum_log.txt
  log/                           — BNR + daily report outputs
  lista_db.txt                   — which DBs to back up

/var/lib/pgsql/                  — PostgreSQL data directory

Technology Age Assessment

Component	Version	Status
CentOS 7	7.9.2009 (Nov 2020)	EOL Jun 2024 — no security patches
Java	8 (Mar 2014)	Extended support only
PostgreSQL	11 (Oct 2018)	EOL Nov 2023 — no security patches
Servlet Spec	2.3 (2001)	25 years old
HTML/JSP UI	HTML 4.0 framesets (1997)	29 years old
Tomcat	9.x	Current — OK

Security Alert: The server runs two EOL software stacks (OS + DB) and is directly reachable from the internet on port 8080. Logs confirm active internet scanning probes hitting the server every few minutes.