Sensitive Data Under FTP Root |
Weakness ID: 220 (Weakness Variant) | Status: Draft |
Description Summary
Avoid storing information under the FTP root directory. |
Access control permissions should be set to prevent reading/writing of sensitive files inside/outside of the FTP directory. |
Various Unix FTP servers require a password file that is under the FTP root, due to use of chroot. |
Nature | Type | ID | Name | View(s) this relationship pertains to |
---|---|---|---|---|
ChildOf | Weakness Class | 216 | Containment Errors (Container Errors) | Development Concepts (primary)699 |
ChildOf | Weakness Class | 668 | Exposure of Resource to Wrong Sphere | Research Concepts (primary)1000 |
Security-Database help your corporation foresee and avoid any security risks that may impact your IT infrastructure and business applications.
28 June 2016