SWAT Server Detection

Info Nessus Network Monitor Plugin ID 1470

Synopsis

The remote host is running SWAT (Samba Web Administration Tool).

Description

The remote host is running SWAT (Samba Web Administration Tool). SWAT allows Samba users to change their passwords and provides the system administrator with an easy-to-use web interface to configure Samba. It is not recommended to let SWAT be accessed by the world, as it allows an intruder to attempt to brute force some account passwords. In addition to this, the traffic between SWAT and the web client is not ciphered, so an eavesdropper can gain cleartext passwords easily.

Solution

Disable SWAT once your Samba server is configured.

See Also

http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/SWAT.html

Plugin Details

Severity: Info

ID: 1470

File Name: 1470.prm

Family: Web Servers

Published: 2004/08/20

Modified: 2016/02/05

Dependencies: 1442

Nessus ID: 10273

Risk Information

Risk Factor: Info

Reference Information

CVE: CVE-2000-0935

BID: 1872