This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject

The Flexera Community is currently in maintenance mode to prepare for the upcoming launch of the new community. Click here for more information.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

FlexNet agent updates integrity

HugeT00n
By
Level 2

Greetings,

I am trying to determine the potential impact of a beacon server on the security of a managed device.

More specifically, in https://helpnet.flexerasoftware.com/fnms/EN/WebHelp/PDF%20Documents/Cloud/GatheringFlexNetInventory.pdf  it is said that an agent can download an update .osd package following the information contained in an .npl file.

I would like to confirm a couple of items:

- Are these files (.npl and .osd) protected from tampering and if Yes, how ?

- Where the packages containing agent updates are generated?

 

More generally, in the case a FlexNet server is compromised, could it  be used as a stepping stone to compromise a managed device, for example, by making available a forged update package with a backdoor?

 

TIA

Best regards

‎Jul 24, 2019 11:17 AM

0 Kudos
(2) Replies

chirag_sharma2
By
Level 7
I beleive that these files aren't protected from tempering.
if your beacon engine is installed in the C drive then go to this location to find out the latest package file

C:\ProgramData\Flexera Software\Staging\Common\Packages\Flexera\Upgrade

‎Jul 25, 2019 01:04 AM

0 Kudos

mfranz
By Level 17 Champion
Level 17 Champion

While I believe, there is no technical measure to "magically" prevent tampering, you can still take your own measures. That would usually include managing access to the servers (web, file shares, RDP), maybe IAM, logging, monitoring, etc.

‎Jul 26, 2019 10:01 AM

0 Kudos