Notification

Icon
Error

ACL on Lansweeper Service Folder / import folder

Posted: Monday, June 24, 2013 9:27:25 AM(UTC)
tp-tec_CE

tp-tec_CE

Member Posts: 25
0
Like
Hello,

currently standard user group "everyone" is set to Full Access
on Lansweeper Subfolder "Service" (path example: c:\program files\lansweeper\service).

That is a vulnerability according to regular Nessus scans.

Is this Access Level required to run the service or just to let users
put lspush result files into subsubfolder "import" ?

For now I have to modify Acl after each patch installation.

Maybe that could be changed.

Thank you,
Mike
Lansweeper
#1Lansweeper Member Administration  
posted: 6/24/2013 10:09:16 AM(UTC)
Is this folder shared?
Are non-administrators able to log onto your server?

Is both answers are "no" I don't see any security issues.
tp-tec_CE
#2tp-tec_CE Member  
posted: 6/24/2013 11:39:47 AM(UTC)
Hi,

that folder is not shared.

But is there any reason why not to place "everyone" only on the import subfolder?

As long as Nessus is detecting it as a vulnerability it is required to change
it manually for PCI purposes. (see screenshot)

Maybe it's also a good point to minimize access to the folders at all. (least privilege)

Greetings,
Mike
tp-tec_CE attached the following image(s):
Nessus_Lansweeper_Vulnerability.jpg
Lansweeper
#3Lansweeper Member Administration  
posted: 6/24/2013 1:40:36 PM(UTC)
If you want you can change the settings manually after upgrading.
tp-tec_CE
#4tp-tec_CE Member  
posted: 6/24/2013 2:26:49 PM(UTC)
Thank you.

Active Discussions

Report Center Windows Computers Falling Behind in Patching
by  jperry   Go to last post Go to first unread
Last post: Yesterday at 6:58:36 PM(UTC)
Report Center Windows: Not latest Service Pack Windows 10
by  stiwa  
Go to last post Go to first unread
Last post: 9/29/2017 8:30:22 AM(UTC)
Report Center OS: end of Lifetime (no longer supported) (Built-in)
by  Ryan.G   Go to last post Go to first unread
Last post: 9/28/2017 4:09:21 PM(UTC)
Report Center Assets and the switch they're connected to
by  santeroc  
Go to last post Go to first unread
Last post: 9/22/2017 9:38:34 AM(UTC)
Report Center License Compliance: Expiration < 60 days (Built-in)
by  Nick.VDB   Go to last post Go to first unread
Last post: 9/20/2017 9:12:52 AM(UTC)
Report Center License Compliance: Expiration < 90 days (Built-in)
by  Nick.VDB  
Go to last post Go to first unread
Last post: 9/20/2017 9:11:26 AM(UTC)
Report Center Windows 10 version
by  Bruce.B   Go to last post Go to first unread
Last post: 9/19/2017 4:56:22 PM(UTC)
Report Center Windows: computers vulnerable to Ccleaner exploit (Floxif)
by  Bruce.B  
Go to last post Go to first unread
Last post: 9/19/2017 4:54:31 PM(UTC)