Keep Knowledge Discovery Up to Date. New releases may include security updates, including updates to third-party libraries.
Run Knowledge Discovery with Minimal Privileges. In the event that a malicious actor causes Knowledge Discovery to behave dangerously, the potential damage is limited if Knowledge Discovery components are running with minimal privileges. There is no need to run Knowledge Discovery with administrative privileges.
Protect the Application Directory. Knowledge Discovery installation directories contain libraries and other files that are necessary for normal operation. If a malicious actor tampers with these files, they might cause Knowledge Discovery to behave dangerously. You can set directory permissions to allow access only to trusted users.
PATH and LD_LIBRARY_PATH should not include temporary or output directories. For example, when you configure a Media Server you can specify a list of allowed output directories. Do not specify any directory that is part of your PATH or LD_LIBRARY_PATH, because this creates a potential security vulnerability.