Case Study #013.01

Scenario

A malicious user activated the dynamic parameter sapgui/user_scripting in the system and executed a harmful MS Excel macro.

Impact

Monitoring changes to system parameters, whether static or dynamic, is a critical security measure. Altering important security parameters, such as enabling or disabling them, can compromise the system. Dynamic parameter changes are particularly critical because they do not require server restart, making them harder to track but potentially more dangerous.

DefenceMore OCA Capabilities

Defencemore OCA's S008 control monitors and reports any changes to dynamic parameters in the system. Additionally, an alarm function triggers email notifications to system administrators to keep them informed of any such changes.

Related Checks

• S008 System(Dynamic) Param Change History