Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Lock down install dir for SWELF #109

Open
ceramicskate0 opened this issue Sep 8, 2019 · 5 comments
Open

Lock down install dir for SWELF #109

ceramicskate0 opened this issue Sep 8, 2019 · 5 comments
Assignees
@ceramicskate0
Labels
Security Vulnerability Serious Application vulnerability in application config or code

Comments

@ceramicskate0
Copy link
Owner

Lock down dir and splunk Dirs configs at file level.
@ceramicskate0 ceramicskate0 added Bug Feature/something in the app that doesnt work as intended. However the app still works Security Vulnerability Serious Application vulnerability in application config or code Need to Confirm Dev needs to verify labels Sep 8, 2019
@ceramicskate0 ceramicskate0 self-assigned this Sep 8, 2019
@ceramicskate0
Copy link
Owner Author

This is a folder permissions issue. If not fixed could allow PrivEsec in OS. This needs to be done to all files and folders SWELF uses.

@ceramicskate0 ceramicskate0 added CRITICAL ERROR Label to describe condition where SWELF no loger works as intended or is completely broken and removed CRITICAL ERROR Label to describe condition where SWELF no loger works as intended or is completely broken labels Jan 26, 2020
@ceramicskate0
Copy link
Owner Author

https://docs.microsoft.com/en-us/dotnet/api/system.io.directory.setaccesscontrol?view=netframework-4.8

@ceramicskate0
Copy link
Owner Author

https://docs.microsoft.com/en-us/dotnet/api/system.io.file.setaccesscontrol?view=netframework-4.8

@ceramicskate0
Copy link
Owner Author

https://docs.microsoft.com/en-us/dotnet/api/system.security.permissions.fileiopermission?view=netframework-4.8

@ceramicskate0
Copy link
Owner Author

since it can be run from any dir. I will give user the command line option to run that will take care of swelf currenlty running dir.

@ceramicskate0 ceramicskate0 removed Need to Confirm Dev needs to verify Bug Feature/something in the app that doesnt work as intended. However the app still works labels Mar 23, 2020
@ceramicskate0 ceramicskate0 pinned this issue Aug 3, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ceramicskate0 ceramicskate0

Labels
Security Vulnerability Serious Application vulnerability in application config or code
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ceramicskate0