Detections
Analytics
RHEL-06-000272 - The system must use SMB client signing for connecting to samba servers using smbclient.
Information
Packet signing can prevent man-in-the-middle attacks which modify SMB packets in transit.Solution
To require samba clients running 'smbclient' to use packet signing, add the following to the '[global]' section of the Samba configuration file in '/etc/samba/smb.conf':client signing = mandatory
Requiring samba clients such as 'smbclient' to use packet signing ensures they can only communicate with servers that support packet signing.
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_RHEL_6_V2R2_STIG.zip
Item Details
Audit Name: DISA Red Hat Enterprise Linux 6 STIG v2r2
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|III, CCI|CCI-000366, Rule-ID|SV-218024r603264_rule, STIG-ID|RHEL-06-000272, STIG-Legacy|SV-50457, STIG-Legacy|V-38656, Vuln-ID|V-218024
Plugin: Unix
Control ID: 9a41ca63df52f4d28945ca3c4594a90859012f41113457a44ffa07e3f63b6e6c