In this video we look at securing access to anonymous users via the IPC$ share. This provides the functionality where users who do not have an account on the server can see the list of shares. In itself this isn’t granting access to the data but is providing potentially useful information. In order to control this we create a share definition within the smb.conf for IPC$ and restrict access with hosts allow and deny statements.
The share definition would look something like this:
[IPC$] hosts allow = 127.0.0.1 host deny = 0.0.0.0/0
We can view this from a windows client:
net view 192.168.0.74
Or from another Linux host
smbclient -L 192.168.0.74 -N