https://community.sap.com/t5/application-development-and-automation-discussions/sap-systems-security-vulnerables/m-p/8791885#M1679263 <HTML><HEAD></HEAD><BODY><P>Recently I came across an article from the following link. Please check the link.</P><P><A href="http://www.securityweek.com/vulnerable-sap-deployments-make-prime-attack-targets">http://www.securityweek.com/vulnerable-sap-deployments-make-prime-attack-targets</A></P><P></P><P>Let say if any sap system is impacted with the above reasons mentioned in this article, what actions we have to take.</P><P></P><P>Thank you</P><P>Venkat</P></BODY></HTML> Tue, 26 Jun 2012 18:17:53 GMT Former Member 2012-06-26T18:17:53Z https://community.sap.com/t5/application-development-and-automation-discussions/sap-systems-security-vulnerables/m-p/8791885#M1679263 <HTML><HEAD></HEAD><BODY><P>Recently I came across an article from the following link. Please check the link.</P><P><A href="http://www.securityweek.com/vulnerable-sap-deployments-make-prime-attack-targets">http://www.securityweek.com/vulnerable-sap-deployments-make-prime-attack-targets</A></P><P></P><P>Let say if any sap system is impacted with the above reasons mentioned in this article, what actions we have to take.</P><P></P><P>Thank you</P><P>Venkat</P></BODY></HTML> Tue, 26 Jun 2012 18:17:53 GMT https://community.sap.com/t5/application-development-and-automation-discussions/sap-systems-security-vulnerables/m-p/8791885#M1679263 Former Member 2012-06-26T18:17:53Z https://community.sap.com/t5/application-development-and-automation-discussions/sap-systems-security-vulnerables/m-p/8791886#M1679264 <HTML><HEAD></HEAD><BODY><P>Well, it's mostly a combination of insecure setup and not implementing security patches.</P><P></P><P>The configuration is covered - at least for ABAP - in this excellent post</P><P></P><P><A _jive_internal="true" href="https://answers.sap.com/blogs/sro/2012/06/05/how-to-secure-your-sap-netweaver-abap" title="http://scn.sap.com/blogs/sro/2012/06/05/how-to-secure-your-sap-netweaver-abap">http://scn.sap.com/blogs/sro/2012/06/05/how-to-secure-your-sap-netweaver-abap</A></P><P></P><P>Then SAP has a monthly patch day where new security patches are announced. Go to</P><P></P><P><A href="https://websmp210.sap-ag.de/securitynotes" title="https://websmp210.sap-ag.de/securitynotes">https://websmp210.sap-ag.de/securitynotes</A></P><P></P><P>to check for the latest security notes.</P><P></P><P>Frank.</P></BODY></HTML> Tue, 26 Jun 2012 19:55:25 GMT https://community.sap.com/t5/application-development-and-automation-discussions/sap-systems-security-vulnerables/m-p/8791886#M1679264 koehntopp 2012-06-26T19:55:25Z https://community.sap.com/t5/application-development-and-automation-discussions/sap-systems-security-vulnerables/m-p/8791887#M1679265 <HTML><HEAD></HEAD><BODY><P>I agree with Frank, follow the guidelines and keep patched and you will be in a better position than most organisations running SAP (at least from external threats)</P></BODY></HTML> Wed, 27 Jun 2012 12:55:58 GMT https://community.sap.com/t5/application-development-and-automation-discussions/sap-systems-security-vulnerables/m-p/8791887#M1679265 Former Member 2012-06-27T12:55:58Z