Security Guidelines For Cifs; Using Credentials; Using Casa; Using Vpn Connections - Novell OPEN ENTERPRISE SERVER 2 SP2 - ADMINISTRATION Manual

Cifs for linux administration guide

Hide thumbs Also See for OPEN ENTERPRISE SERVER 2 SP2 - ADMINISTRATION:

Table of Contents

Security Guidelines for CIFS

1 1

You can use several protection mechanisms to counteract potential security vulnerabilities for CIFS

on Open Enterprise Server (OES) 2 Linux:

Section 11.1, "Using Credentials," on page 71

Section 11.2, "Using CASA," on page 71

Section 11.3, "Using VPN Connections," on page 71

Section 11.4, "Using SMB Signing," on page 71

Section 11.5, "Other Security Considerations," on page 71

When you set the password for the CIFS proxy user during YaST configuration, make sure you

choose a password according to password policy restrictions. Choose a password that has

combination of alphanumeric characters, capital letters, small letters, and adheres to the password

policy restrictions.

Select CASA as the secret store during YaST configuration of CIFS.

Use VPN or other secure connections while accessing confidential CIFS shares through the Internet,

because CIFS packets are not encrypted.

For a secure connection, set the SMB signing option to optional in iManager. For details on how to

set it, see

"Enabling and Disabling SMB Signing" on page

OES 2 Linux provides Universal Password security. For details, see "How to Secure Universal

Password" in the

Novell Password Management Administration Guide (http://www.novell.com/

documentation/password_management32/pwm_administration/data/bwjorxp.html).

35.

Security Guidelines for CIFS

Table of Contents

Do you have a question about the OPEN ENTERPRISE SERVER 2 SP2 - ADMINISTRATION and is the answer not in the manual?