Questions tagged [samba]

Samba is a free software re-implementation of the SMB/CIFS networking protocol.

Samba is a free software re-implementation of the SMB/CIFS networking protocol, and was originally developed by Andrew Tridgell. As of version 3, Samba provides file and print services for various Windows clients and can integrate with a Windows Server domain, either as a Primary Domain Controller (PDC) or as a domain member. It can also be part of an Active Directory domain.

Samba runs on most Unix, OpenVMS and Unix-like systems, such as Linux, Solaris, AIX and the BSD variants, including Apple's OS X Server, and OS X client (version 10.2 and greater). Samba is standard on nearly all distributions of Linux and is commonly included as a basic system service on other Unix-based operating systems as well. Samba is released under the terms of the GNU General Public License. The name Samba comes from SMB (Server Message Block), the name of the standard protocol used by the Microsoft Windows network file system.

See: https://en.wikipedia.org/wiki/Samba_(software) for more information

30 questions
16
votes
1 answer

How does the EternalBlue Exploit Work?

I've casually googled for explanations on how exactly the EternalBlue exploit works but, I suppose given the media storm about WannaCry, I've only been able to find resources that at best say it's an SMB exploit. I get that there was a bug in…
butallmj
  • 281
  • 1
  • 2
  • 5
8
votes
1 answer

Message signing disabled (dangerous, but default)

Over the last couple of years, I've developed a fairly keen interest in Penetration Testing & Information Security. Throughout this time, I've acquired (and accumulated) a range of different devices with network capabilities, primarily, in an effort…
voices
  • 1,649
  • 7
  • 22
  • 36
7
votes
1 answer

Samba printer usernames and passwords , security problem

Password leaks , printing from Linux client to windows based print server When authenticating Linux users for using a windows share printer on their machine, the windows domain user-name and password of the user has to be entered in the add new…
Ijaz Ahmad
  • 1,592
  • 1
  • 11
  • 20
5
votes
2 answers

Reverse connection Metasploitable 2 -> Kali Linux (Samba 3.x) without Metasploit

I am trying to exploit Metasploitable 2 without the use of Metasploit, with the aim of learning. In this case, I am focusing on Samba 3.x (Port TCP 139, 445) In this link http://www.rwbnetsec.com/samba-3-x/ two different methods are explained to…
J.g.
  • 53
  • 1
  • 6
5
votes
0 answers

Metasploit DCERPC BindError

I'm trying to gain shell access to my home router/gateway, so I decided to use metasploit and nmap to find if there were any vulnerabilities that I could use: [marcel@GLaDOS ~]$ sudo nmap -sS -Pn -A 192.168.2.1 Starting Nmap 7.50 ( https://nmap.org…
marceloneil
  • 151
  • 1
  • 3
5
votes
0 answers

Is there are way to do Per-User Encrypted Samba Storage?

I'd like to address following scenario: Company keeps documents in-house and not in Cloud Documents are stored on Samba Share Sysadmins have access to the storage so they can dump it The point is to reduce the Evil Sysadmin Threat I am considering…
Aria
  • 2,706
  • 11
  • 19
4
votes
1 answer

How does the CVE-2017-7494 "SambaCry" exploit work?

According to media reports, an attacker can upload a library to a Samba share and then open a named pipe whose name equals the local path to the uploaded library to remotely execute the code contained in the library. How does it work? Is this a…
Heinzi
  • 2,914
  • 2
  • 21
  • 25
4
votes
1 answer

What makes me vulnerable to CVE-2017-7494?

I do understand that basically all Versions of Samba from 3.5.0 onwards are vulnerable to a remote code execution vulnerability. And there is even PoC Code to check if a specific server is vulnerable by myself. But I do not understand in what exact…
anon
  • 386
  • 1
  • 10
4
votes
4 answers

CVE-2017-7494 Samba remote call. How do I know if Samba is running or not on my Ubuntu server?

My servers are Ubuntu. I want to know whether Samba is installed accidentally or not. Is the following command correct? It seems that Samba isn't installed. $ samba --version The program 'samba' is currently not installed. You can install it by…
zono
  • 185
  • 8
2
votes
1 answer

SMB/CIFS shares on HP-UX vulnerabilities

So, I've run an unauthenticated Nessus scan against a critical piece of infrastructure as part of a pen-test but I'm getting back some weird stuff and i can't seem to re-create the issue to demonstrate it to the client. The machine i'm testing is a…
NULLZ
  • 11,426
  • 17
  • 77
  • 111
2
votes
0 answers

Is SMB3-only Samba secure?

There's lots of "SMB is bad" parrotting online, and whenever I look closely, these claims are either unsubstantiated, or apply to unpached or misconfigured Windows servers or old versions of the SMB protocol. If I put stuff like this in my…
Ansis Māliņš
  • 643
  • 1
  • 5
  • 6
2
votes
0 answers

Bypass of LDAP authentication

In an LDAP environment that has no Radius or SSO policy whatsoever I have been told from the corporate sysadmin that: Machines that are not included into the domain could access resources (SAMBA) at the domain just creating local users matching the…
bradbury9
  • 350
  • 1
  • 10
2
votes
3 answers

How to externally backup a fully encrypted disk partition

For a kind of NAS/server running Ubuntu with SAMBA to host files for several Windows computers, I would like to encrypt the files on the server. I know I could do this for the partition using ZFS or LUKS. But I have another challenge: Each night I…
Felix
  • 21
  • 2
2
votes
1 answer

What is the latest samba vulnability, and should I care?

I've seen this post on Slashdot. Quote: there were no signs yet of attackers exploiting the vulnerability in the 12 hours since its discovery was announced. But she said it had taken researchers only 15 minutes to develop malware that made use of…
jeff
  • 21
  • 1
2
votes
2 answers

SFTP vs VPN and Samba share to share files remotely

I need to set up a way to share files securely and remotely with other users. I have a file server on which the user's files will be stored. Would it be more secure to have the users SFTP into the server to get/put files, or would it be better to…
nwrobel
  • 21
  • 1
  • 2
1
2