AnsweredAssumed Answered

Problem To fix vulnerability in Alfresco -SMB Sevice

Question asked by securityteam on May 16, 2019
Latest reply on May 26, 2019 by cesarista

Hi,

In our society we are using Alfresco, and some of the port that alfresco use is port 445 (smb service), the vulnerability here is : CVE-1999-0519 (cifs-null-session-permitted) , to remediate and fix the vulnerability we have to Restrict anonymous access, but to do that we have to add two lines in smb.conf :

guest account = nobody

restrict anonymous = 1

 

In alfresco where to find SMB configuration file to fix this vulnerability, The OS used is Debian.

 

Best Regards

Outcomes