Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Doubts with installation of SourceTree at my enterprise

satapathysubham13
satapathysubham13 November 17, 2021
NoCheck
1Are there any known vulnerabilities and are all vulnerabilities with CVE above 4.0 are patched?
2Is there a link on the website for patch releases and how do we ensure latest security patches are applied, wherever applicable.?
3Is there a defined vulnerability discovery mechanism?
4Is there a criteria defined for releasing a security patch?
5Is there a timeline defined for vulnerability discovery to patch roll-out?
6Is internet access required? If yes, access shall be for which ports? (e.g. FTP, SSH/SFTP, Telnet, SMTP, DNS, Win Shares, RDP)
7All security settings recommended by vendor shall be applied (Hardening)
8Is there any exceptions for AV, patch, USB or other exceptions on system where this is to be installed?
9What are the privileges required for using/running the file?
10If ports need to be opened to extranet systems, vulnerabilities associated shall be assessed and remediated
11Is there a process for patch deployment at remote locations?
Answer
Watch
Like Be the first to like this
234 views

0 answers

Suggest an answer

Log in or Sign up to answer
Sourcetree
Sourcetree
TAGS
AUG Leaders

Atlassian Community Events

    See all events