Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-215280 | AIX7-00-002089 | SV-215280r508663_rule | Medium |
Description |
---|
If the smbpasswd file has a mode more permissive than 0600, the smbpasswd file may be maliciously accessed or modified, potentially resulting in the compromise of Samba accounts. |
STIG | Date |
---|---|
IBM AIX 7.x Security Technical Implementation Guide | 2021-03-10 |
Check Text ( C-16478r294291_chk ) |
---|
Run the following command to check if samba packages are installed on AIX: # lslpp -l samba* If the above command shows that samba packages are installed, this is a finding. |
Fix Text (F-16476r294292_fix) |
---|
Run the following command to un-install the samba packages: # installp -ug samba* |