Unsolved
This post is more than 5 years old
11 Posts
0
1423
July 2nd, 2013 07:00
Null Sessions on VNX File Side?
I was scanning my VNX with the Nexpose vulnerability scanner and I noticed it's reporting that null sessions are allowed on the file side of my VNX.
I verified manually that it is the case.
From what I can see, using a computer that's not part of the domain, with no passwords, you can see a list of file shares, users and password policies on the VNX.
Not necessarily the end of the world, but I would like to disable it if it's not going to cause an issue.
Has anyone disabled null sessions on a VNX?
Any issues?
Any reason not to do it?
Thanks,
Jon
No Events found!
Rainer_EMC
6 Operator
•
8.6K Posts
0
July 2nd, 2013 07:00
Just take a look at the Parameters guide and the cifs nullsession param
jonderrenbacker
11 Posts
0
July 2nd, 2013 12:00
For anyone who comes after me with this question, here's how to turn it off if you want to.
I don't know what it might break. My VNX isn't in production yet, so now is the time to find out...
I'll post back if I find it causes issues in my environment.
1. SSH into your management IP using your nasadmin account
2. To verify the setting, run this:
server_param server_2 -facility cifs -info nullSession -verbose
3. To turn off nullsessions:
server_param server_2 -facility cifs -modify nullSession -value 0
server_param server_3 -facility cifs -modify nullSession -value 0
x. If you need to turn nullsessions back on because it breaks something:
server_param server_2 -facility cifs -modify nullSession -value 1
server_param server_3 -facility cifs -modify nullSession -value 1
Jon
Rainer_EMC
6 Operator
•
8.6K Posts
0
July 2nd, 2013 13:00
See http://support.microsoft.com/kb/890161
keeban
1 Rookie
•
66 Posts
0
May 30th, 2016 22:00
if i disable null session its effecting to domain join users and shares?
Rainer_EMC
6 Operator
•
8.6K Posts
0
May 31st, 2016 02:00
no