Problem
In security Scanning customer finds "57608 : Signing is not required on the remote SMB server."
security violation : 57608 : SMB Signing not required
Error Message
57608 : SMB Signing not required
Signing is not required on the remote SMB server. An unauthenticated, remote attacker can exploit this to conduct man-in-the-middle attacks against the SMB server.
Cause
Enforce message signing in the host's configuration. On Windows, this is found in the policy setting 'Microsoft network server: Digitally sign communications (always)'. On Samba, the setting is called 'server signing'.
Solution
Follow below steps to remediate the issue.
Steps :
1) Stop the CIFS server using clish (CIFS> server stop)
2) Add below line in /opt/VRTSnas/conf/smbglobal.conf file on both the nodes
server signing ='mandatory'
3) Start the CIFS server using clish (CIFS> server start)
4) Verify if the entry is present in the /etc/samba/smb,conf file on both the nodes
# cat /etc/samba/smb.conf | grep signing
5) Run Security Scan and verify if the issue is fixed.
Was this content helpful?
Translated Content
Please note that this document is a translation from English, and may have been machine-translated. It is possible that updates have been made to the original version after this document was translated and published. Veritas does not guarantee the accuracy regarding the completeness of the translation. You may also refer to the English Version of this knowledge base article for up-to-date information.