| VID |
23201 |
| Severity |
40 |
| Port |
901 |
| Protocol |
TCP |
| Class |
SWAT |
| Detailed Description |
The SWAT server appears to be configured to run in demo mode. This is not recommended because it runs SWAT (Samba Web Administration Tool) without authentication and with full administrative ability. It allows changes to Samba's configuration file (smb.conf) as well as general operation with root privileges. The option that creates this ability is the -a flag to SWAT. Demo mode should not be used on a production environment.
* References:
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/SWAT.html
* Platforms Affected:
Linux Any version
Unix Any version |
| Recommendation |
If it is not required, disable SWAT.
-- OR --
Limit access to authorized users and ensure that it is set up with stunnel to encrypt network traffic. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
