AFP Server Share Enumeration (guest)

info Nessus Plugin ID 45380

Synopsis

The "guest" user can access some network shares.

Description

The remote AFP server allows guest users to connect to several shares.

Make sure this is in line with your organization's security policy.

Solution

If you do not want the 'guest' user to be able to access any share on the remote system :

- On Mac OS X client, edit System Preferences -> Accounts
-> Guest and uncheck the option 'Allow guests to connect to shared folders'.

- On Mac OS X server, edit the AFP service and disable option 'Allow guests to connect'.

Plugin Details

Severity: Info

ID: 45380

File Name: afp_list_guest_shares.nasl

Version: Revision: 1.3

Type: remote

Family: Misc.

Published: 3/30/2010

Updated: 3/11/2011

Supported Sensors: Nessus

Vulnerability Information

Required KB Items: AFP/GuestAllowed