Check: GEN006060
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE:
GEN006060
(in versions v1 r14 through v1 r10)
Title
The system must not run Samba unless needed. (Cat II impact)
Discussion
Samba is a tool used for the sharing of files and printers between Windows and UNIX operating systems. It provides access to sensitive files and, therefore, poses a security risk if compromised.
Check Content
Check the system for a running Samba server. Procedure: # ps -ef |grep smbd If the Samba server is running, ask the SA if the Samba server is operationally required. If it is not, this is a finding.
Fix Text
If there is no functional need for Samba and the daemon is running, disable the daemon by killing the process ID as noted from the output of ps -ef |grep smbd. The utility should also be removed or not installed if there is no functional requirement.
Additional Identifiers
Rule ID: SV-4321r2_rule
Vulnerability ID: V-4321
Group Title: GEN006060
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001436 |
The organization disables organization-defined networking protocols within the information system deemed to be nonsecure except for explicitly identified components in support of specific operational requirements. |
Controls
Number | Title |
---|---|
No controls are assigned to this check |