STIGQter STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The system must not run Samba unless needed.

DISA Rule

SV-227017r603265_rule

Vulnerability Number

V-227017

Group Title

SRG-OS-000095

Rule Version

GEN006060

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

If there is no functional need for Samba and the daemon is running, disable the daemon by killing the process ID as noted from the output of ps -ef |grep smbd. The utility should also be removed or not installed if there is no functional requirement.

Check Contents

Check the system for a running Samba server.

Procedure:
# ps -ef |grep smbd

If the Samba server is running, ask the SA if the Samba server is operationally required. If it is not, this is a finding.

Vulnerability Number

V-227017

Documentable

False

Rule Version

GEN006060

Severity Override Guidance

Check the system for a running Samba server.

Procedure:
# ps -ef |grep smbd

If the Samba server is running, ask the SA if the Samba server is operationally required. If it is not, this is a finding.

Check Content Reference

M

Target Key

4060

Comments