A-064 - Dolibarr (VPS-02)
Purpose
Provide business application capabilities including client and financial data management.
Asset Type
- Platform
Description
- ERP application hosted on VPS-02
- Handles business-related operations and data
- Includes web application layer and backend database interaction
Criticality
- Critical
Sensitivity
- Highly Sensitive
Exposure Level
- Public
Trust Zone
- Heaven
Dependencies
- VPS-02 infrastructure
- Database (A-065)
- Web server stack (Nginx / PHP-FPM)
Relationships
- Interacts with database for data storage
- Accessible via public HTTP/HTTPS endpoints
Security Position (Architecture Context)
- Directly exposed business application
- High-value target due to sensitive data
- Vulnerable to common web attacks (SQLi, RCE, XSS)
Existing Protective Measures
- Restricted SSH access (key-based authentication)
- Limited user privileges within application
- Database not publicly exposed
Owner / Responsibility
- Development Role (Dev)
Notes
- No dedicated WAF currently deployed
- Backup and logging mechanisms not fully mature
- Represents a major risk concentration point