topic Re: Problem To fix vulnerability in Alfresco -SMB Sevice in Alfresco Forum

Problem To fix vulnerability in Alfresco -SMB Sevice

securityteam — Thu, 16 May 2019 10:38:35 GMT

Hi,In our society we are using Alfresco, and some of the port that alfresco use is port 445 (smb service), the vulnerability here is : CVE-1999-0519 (cifs-null-session-permitted) , to remediate and fix the vulnerability we have to Restrict anonymous access, but to do that we have to add two lines in

Re: Problem To fix vulnerability in Alfresco -SMB Sevice

securityteam — Tue, 21 May 2019 09:27:10 GMT

Hi,

Can someone knows how to fix this please.

Best regards

Re: Problem To fix vulnerability in Alfresco -SMB Sevice

cesarista — Sun, 26 May 2019 19:27:07 GMT

Hi:

Alfresco CIFS is not a SMB-like implementation, I mean you do not have smb.conf

By the way, I think Alfresco CIFS is going to be discontinued in a near future (Alfresco 6.x)

Anyway maybe you feel safer with the following properties in alfresco-global.properties

alfresco.authentication.allowGuestLogin=false
passthru.authentication.guestAccess=false

Regards.

--C.