~/Cedric

The access system allows software downloads Vulnerabilities

No monitoring of installation and maintenance procedures (configuration and parameter setting records) Vulnerabilities

No management of write rights in shared storage spaces. Vulnerabilities

Software incompatibility (e.g. side effect of message-filtering anti-virus software, etc.) Vulnerabilities

Use of the internal distribution list accessible to everyone Vulnerabilities

The messaging system allows software updates to be installed (e.g. patches, anti-virus updates, etc.) Vulnerabilities

Existence of periods or events that cause a very significant increase in use of the system Vulnerabilities

Pirated programmes can be installed Vulnerabilities

Use of an obsolete version of the operating system or applications Vulnerabilities

No SLAs with third parties (internal or external) Vulnerabilities

Are there formal contractual agreements with the main third parties? Are there intervention rules? People's names? Timeframes?