Check: GEN006225
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE:
GEN006225
(in versions v1 r14 through v1 r10)
Title
Samba must be configured to use an authentication mechanism other than share. (Cat II impact)
Discussion
Samba share authentication does not provide for individual user identification and must not be used.
Check Content
Check the security mode of the Samba configuration. # grep -i security /usr/lib/smb.conf If the security mode is share, this is a finding.
Fix Text
Edit the /usr/lib/smb.conf file and change the security setting to user or another valid setting other than share. # vi /usr/lib/smb.conf
Additional Identifiers
Rule ID: SV-39239r1_rule
Vulnerability ID: V-22499
Group Title: GEN006225
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000366 |
The organization implements the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| CM-6 |
Configuration Settings |