RFC: disabling the SMB1 protocol in our samba stack (client, server) (#1697817)
Robie Basak
robie.basak at ubuntu.com
Fri Jun 23 08:24:27 UTC 2017
Hi Andreas,
On Mon, Jun 19, 2017 at 06:44:42AM -0700, Andreas Hasenack wrote:
> we had a bug [1] filed against Ubuntu as part of a larger campaign [2] to
> disable the old, vulnerable, deprecated SMB1 protocol in the Samba stack.
>
> I asked upstream [3] for their opinion on changing the default protocol
> level.
Thank you for kicking this off upstream! Looks like this is now under
active consideration and development by upstream.
Given that this is now making progress upstream, I suggest that in
Ubuntu we go with what upstream decides to do: turning SMB1 support off
by default when we update to a release where they do that. Unless they
(or our security team) suggest that we do otherwise.
Robie
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-devel/attachments/20170623/82325291/attachment.pgp>
More information about the ubuntu-devel
mailing list