Samba packages must be removed from AIX.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-215280	AIX7-00-002089	SV-215280r991589_rule		Medium

Description

If the smbpasswd file has a mode more permissive than 0600, the smbpasswd file may be maliciously accessed or modified, potentially resulting in the compromise of Samba accounts.

STIG	Date
IBM AIX 7.x Security Technical Implementation Guide	2024-08-16

Details

Check Text (C-16478r294291_chk)

Run the following command to check if samba packages are installed on AIX:
# lslpp -l samba*

If the above command shows that samba packages are installed, this is a finding.

Fix Text (F-16476r294292_fix)

Run the following command to un-install the samba packages:
# installp -ug samba*