UCF STIG Viewer Logo

The /etc/smb.conf file must have mode 0644 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-1028 GEN006140 SV-37875r1_rule ECLP-1 Medium
Description
If the "smb.conf" file has excessive permissions, the file may be maliciously modified and the Samba configuration could be compromised.
STIG Date
Red Hat Enterprise Linux 5 Security Technical Implementation Guide 2017-03-01

Details

Check Text ( C-37094r1_chk )
Check the mode of the smb.conf file.

Procedure:
# ls -lL /etc/samba/smb.conf

If the "smb.conf" has a mode more permissive than 0644, this is a finding.
Fix Text (F-32370r1_fix)
Change the mode of the smb.conf file to 0644 or less permissive.

Procedure:
# chmod 0644 smb.conf.