This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 

ACL on Lansweeper Service Folder / import folder

tp-tec_CE
Engaged Sweeper

‎06-24-2013 10:27 AM

Hello,

currently standard user group "everyone" is set to Full Access
on Lansweeper Subfolder "Service" (path example: c:\program files\lansweeper\service).

That is a vulnerability according to regular Nessus scans.

Is this Access Level required to run the service or just to let users
put lspush result files into subsubfolder "import" ?

For now I have to modify Acl after each patch installation.

Maybe that could be changed.

Thank you,
Mike
Labels:
0 Kudos
4 REPLIES 4
tp-tec_CE
Engaged Sweeper

‎06-24-2013 03:26 PM

Thank you.
0 Kudos
Hemoco
Lansweeper Alumni

‎06-24-2013 02:40 PM

If you want you can change the settings manually after upgrading.
0 Kudos
tp-tec_CE
Engaged Sweeper

‎06-24-2013 12:39 PM

Hi,

that folder is not shared.

But is there any reason why not to place "everyone" only on the import subfolder?

As long as Nessus is detecting it as a vulnerability it is required to change
it manually for PCI purposes. (see screenshot)

Maybe it's also a good point to minimize access to the folders at all. (least privilege)

Greetings,
Mike
0 Kudos
Hemoco
Lansweeper Alumni

‎06-24-2013 11:09 AM

Is this folder shared?
Are non-administrators able to log onto your server?

Is both answers are "no" I don't see any security issues.
0 Kudos

Archive

This board contains archived posts from the retired Lansweeper Forum and Insiders Community.

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now
li.common.scroll-to.top