Carnegie Mellon University Website Home Page
 
Skip navigation and jump directly to page content
News
Status Updates
Mac OS X Leopard
Andrew Printing
Patch Alert Notification
Accounts
Network, Phone & TV
Software
Email & Calendar
Secure Your Computer
Clusters & Printing
Web Services
Classroom & Event Support
Education & Outreach
Support & Repair
Information Security Office (ISO)

Patch Alert Notification for Leopard Users

Overview

Mac OS X Leopard can share folders with Windows computers using the Samba software package  New versions of Samba, like the one on Leopard, appear to ISO's security scans as a vulnerable Windows machine.  If you use file sharing, you may receive a false patch alert.  

What Should I Do? 

If you receive a patch alert for the Microsoft Windows vulnerability announced on April 12, 2004 and October 11, 2005, see the example, request a one year exemption from MS04-011 scanning by replying to the patch notification message.  In the message, state that the machine in question is running Mac OS X Leopard. 

Additional Information 

Enable / Disable File Sharing 

  1. To enable/disable file sharing, select System Preferences > Sharing.
  2. Select File Sharing (left) and click the Options button.
  3. Check or uncheck Share files and folders using SMB
    Note: File Sharing is not on by default.

IMPORTANT NOTE: When file sharing is enabled, malicious attackers may try to exploit security vulnerabilities or weak passwords to gain unauthorized access to your personal files or take control of your Mac.  We recommend that you use file sharing ONLY when absolutely necessary and disable the service as soon as you are done.