← Back to SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide

V-4321

CAT II (Medium)

The system must not run Samba unless needed.

Rule ID

SV-46129r1_rule

STIG

SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide

Version

V1R12

CCIs

CCI-001436

Discussion

Samba is a tool used for the sharing of files and printers between Windows and UNIX operating systems. It provides access to sensitive files and, therefore, poses a security risk if compromised.

Check Content

Check the system for a running Samba server.

Procedure:
# ps -ef |grep smbd

If the Samba server is running, ask the SA if the Samba server is operationally required. If it is not, this is a finding.

Fix Text

If there is no functional need for Samba and the daemon is running, disable the daemon by killing the process ID as noted from the output of ps -ef |grep smbd. The samba package should also be removed or not installed if there is no functional requirement.

Procedure:
rpm -qa |grep samba

This will show if "samba" is installed. Packages that start with “yast2-samba” are NOT part of the Samba software suite.  To remove:

rpm -e samba
SuSEconfig