External Audit - some security questions

Help us improve our product. Feature requests are welcomed!
Post Reply
User avatar
bzdega
Posts: 131
Joined: Tue Nov 14, 2017 9:34 am

External Audit - some security questions

Post by bzdega » Mon Nov 18, 2019 11:22 am

Hi,

we made an externet security audit to check our TSplus installations.

There were some issues found, which comes from the TSplus installation, e.g.:

the webserver folder is writable for every user, so html- and javascript code could be placed in there by every user (see attached screenshot)
2019-11-18 11_53_22-demo.proalpha.cloud und 3 weitere Seiten - Personal - Microsoft Edge.png
what are the minimum access righst for the webserver folder?

Michael

Post Reply