NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

MarshalK's avatar
MarshalK
Aspirant
May 26, 2017

RND2000v1 (ReadyNAS Duo v1) alternate protocol (trying to get rid of SMBv1)

I have 2 2012R2 servers and WIN 7 or WIN 10 PCs only in this network.  I want to disable SMBv1 for security purposes.  Is there an alternative protocol I can use so my PCs and Servers can access this...
CIFS
SMBv1
Windows Domain and Active Directory
Sandshark's avatar
Sandshark
Sensei - Experienced User
May 27, 2017

I would not expect an SMB update to OS 4.x or 5.x systems.  You can alternatly use NFS (if you are using Windows 10 Pro), FTP, or WebDAV.  I have seen articles that say NFS doesn't work right with credentials on Win10 and you have to allow anonymous access, but that may have been fixed since they were written.

    • Sandshark's avatar
      Sandshark
      Sensei - Experienced User
      May 28, 2017
      StephenB wrote:
      Sandshark wrote:

      I would not expect an SMB update to OS 4.x or 5.x systems.  

       

      Actually mdgm-ntgr says differently here: https://community.netgear.com/t5/Using-your-ReadyNAS/Any-plans-for-Samba-fix-for-CVE-2017-7494/m-p/1290213/highlight/true#M130544

       

      No, he said they are not updating SMB versions "at this time" and would later for OS6.  He left hanging whether they would update OS4.x or 5.x.  Given that those are based on obsolete versions of Debian, I wouldn't hold my breath to see if they do.

       

      However, the patch being installed may provide an alternate solution to turning off SMB.

      • StephenB's avatar
        StephenB
        Guru - Experienced User
        May 29, 2017
        Sandshark wrote:

         

        No, he said they are not updating SMB versions "at this time" and would later for OS6.  He left hanging whether they would update OS4.x or 5.x.  Given that those are based on obsolete versions of Debian, I wouldn't hold my breath to see if they do.

         

        Maybe we are using "update" in two different senses.  I wasn't meaining to say that SMB would be upgraded to a newer version on the legacy NAS, just that the fix for the CVE would be backported to them.

         

        That's based on this statement by mdgm: "We've built firmware with the patch for CVE-2017-7494 for legacy models as well. Once they have undergone QA testing, I believe we plan to release those updates as well:"

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More