Defense.com

The SMB Signing not required when detected with a vulnerability scanner will report it as a CVSSv3.0 5.3.

CVSS is a scoring system for vulnerability systems, its an industry standard scoring system to mark findings against a specific number ranging from 0 to 10.  They are shown as:

<a href="" rel="nofollow noopener noreferrer" target="_blank">SMB Signing not required Vulnerability Information</a>

Signing is not required on the remote SMB server. Enforce message signing in the host's configuration. On Windows, this is found in the policy setting 'Microsoft network server: Digitally sign communications (always)'. On Samba, the setting is called 'server signing'.

<a href="" rel="nofollow noopener noreferrer" target="_blank">Remediation</a>

Stop the CIFS server using clish (CIFS&gt; server stop)

- Stop the CIFS server using clish (CIFS&gt; server stop)

Add below line in /opt/VRTSnas/conf/smbglobal.conf file on both the nodes server signing ='mandatory'

- Add below line in /opt/VRTSnas/conf/smbglobal.conf file on both the nodes server signing ='mandatory'

Start the CIFS server using clish (CIFS&gt; server start)

- Start the CIFS server using clish (CIFS&gt; server start)

Verify if the entry is present in the /etc/samba/smb,conf file on both the nodes # cat /etc/samba/smb.conf | grep signing

- Verify if the entry is present in the /etc/samba/smb,conf file on both the nodes # cat /etc/samba/smb.conf | grep signing

SMB Signing not required (Linux) Vulnerability

Privacy notice

Cookie policy

Find answers and get help from Intercom Support and Community Experts

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Title

Track the progress of all tickets related to your company.

Tickets portal.

{assigneeName} needs more information from you

CVSS:

SMB Signing not required Vulnerability Information

Remediation