- Plesk 12.0 for Linux
- Plesk Onyx 17.5 for Linux
directory are incorrect, they are set to 777:
# ls -ald /usr/local/psa/admin/tmp
drwxrwxrwx 2 root root 4096 Aug 26 2015 /usr/local/psa/admin/tmp
Permissions should be 770 and the ownership should be root:psaadm
As a result, server may be hacked and malicious files may be put to the server, for example, under apache user.
This is a Plesk bug #PPPM-5014, that was fixed in Plesk Onyx 17.8: this directory was removed completely as Plesk does not use it any longer.
As a workaround for older versions, remove the directory as Plesk does not need it: