Jump to content
Welcome to our new Citrix community!
  • 0

SMB Signing security vulnerability


Question

Hi Experts,

 

Our security team has identified a vulnerability "SMB Signing Disabled or SMB Signing Not Required" and they have suggested to Enable the SMB Signing.

As per our security team,

"Without SMB signing, a device could intercept SMB network packets from an originating computer, alter their contents, and broadcast them to the destination computer. Since, digitally signing the packets enables".

 

So we wanted to confirm if anybody has enabled it. If yes , then is there any issue we faced and how we mitigated it? We dont have test infra so we have to do it in Prod directly.

 

We are using XenApp 6.5 with HRP07 on Windows server 2008 R2. We have Published Server desktop as well applications published in our infra. we also use web based applications in our citrix farm.

 

with Best Regards,

Quaseem

Link to comment

2 answers to this question

Recommended Posts

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...