You'll have to know the name of a share to map to it?
Other than that none I can think of. It does not eliminate all security
concerns, just makes it tough for any except the really experienced and
dedicated hacker to get past. And they have to be on your network to
start with.
Jim Oberholtzer
Chief Technical Architect
Agile Technology Architects
On 3/4/13 6:57 AM, rob@xxxxxxxxx wrote:
Any negative ramifications?
Rob Berendt
-- IBM Certified System Administrator - IBM i 6.1 Group Dekko Dept
1600 Mail to: 2505 Dekko Drive Garrett, IN 46738 Ship to: Dock 108
6928N 400E Kendallville, IN 46755 http://www.dekko.com From: Jim
Oberholtzer <midrangel@xxxxxxxxxxxxxxxxx> To: Midrange Systems
Technical Discussion <midrange-l@xxxxxxxxxxxx>, Date: 03/04/2013 07:44
AM Subject: Re: Security: NetBIOS Shared Folder List Available Sent
by: midrange-l-bounces@xxxxxxxxxxxx Turn off browse announcements in
the netserver config. It will require a restart of the NetServer. Jim
Oberholtzer Chief Technical Architect Agile Technology Architects On
3/4/2013 6:38 AM, rob@xxxxxxxxx wrote:
>Apparently people who do not even have an IBM i account can open up
>Windows explorer on their PC and point it to
>\\youribmi
>and see your list of shares. Now, they can't access them without an IBM
i
>account (unless you set up Guest access). But our Qualys internal
>security scan lets us know that this is of some concern because it may
be
>enough to encourage someone to try a brute force attack to get into
them.
>They consider this a middle of the road concern.
>
>Is there some way to turn off showing the list of shares to those users
>without an IBM i account?
>
>If this was running Windows I could follow the recommendation of the
>report and do a couple of steps and it would be done.
>
>
>Rob Berendt
>-- IBM Certified System Administrator - IBM i 6.1 Group Dekko Dept
>1600 Mail to: 2505 Dekko Drive Garrett, IN 46738 Ship to: Dock 108
>6928N 400E Kendallville, IN 46755http://www.dekko.com
>--
--
