Technical Bulletin: SOC Handlers allow too many permission on file system for Platform Operator

Published: November 17, 2017

The ACP System Operations Center provides a UI with special controls over certain files and the underlying file system, like the. ACP license and TLS/SSL certificate upload. In ACP version 8.1 and before, the SOC handlers provide download/upload/delete handlers functions to all locations where the Apprenda Administrator account has access.

Recommendation

It is recommend to limit this access to the Platform Repo and ApprendaPlatform folders on Web and Application nodes, and monitor file system access.