[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

243238

 
 

909

 
 

192833

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-90819-4

Platform: rhel7,centos7Date: (C)2017-06-29   (M)2022-10-10



Require Client SMB Packet Signing, if using mount.cifs Require packet signing of clients who mount Samb Ashares using the 'mount.cifs' program (e.g., those who specify shares in '/etc/fstab'). To do so, ensure signing options (either 'sec=krb5i' or 'sec=ntlmv2i') are used. See the 'mount.cifs(8)' man page for more information. A Samb Aclient should only communicate with servers who can support SMB packet signing.


Parameter:


Technical Mechanism:

Packet signing can prevent man-in-the-middle attacks which modify SMB packets in transit. Fix: No Remediation Info

CCSS Severity:CCSS Metrics:
CCSS Score : Attack Vector:
Exploit Score: Attack Complexity:
Impact Score: Privileges Required:
Severity: User Interaction:
Vector: Scope:
 Confidentiality:
 Integrity:
 Availability:
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:31223
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:30500


OVAL    2
oval:org.secpod.oval:def:31223
oval:org.secpod.oval:def:30500

© SecPod Technologies