Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The Samba Web Administration Tool (SWAT) must be restricted to the local host or require SSL.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-1026 | GEN006080 | SV-1026r5_rule | EBRP-1 | Medium |
| Description |
|---|
| SWAT is a tool used to configure Samba. As it modifies Samba configuration, which can impact system security, it must be protected from unauthorized access. SWAT authentication may involve the root password, which must be protected by encryption when traversing the network. Restricting access to the local host allows for the use of SSH TCP forwarding, if configured, or administration by a web browser on the local system. |
| STIG | Date |
|---|---|
| Draft AIX Security Technical Implementation Guide | 2011-08-17 |
Details
| Check Text ( C-2047r3_chk ) |
|---|
| If SWAT is used, it must be utilized with SSH to ensure a secure connection between the client and the server. If SWAT is running, ask the SA if SSH port forwarding is used to access it. If not, this is a finding. |
| Fix Text (F-1180r2_fix) |
|---|
| Disable SWAT or require that SWAT is only accessed via SSH. |