When I ran a security checker on our network, I received the following warning:
——————-
Vulnerability Group: SMB/NetBIOS Resource Sharing
Vulnerability: Unpassworded NetBIOS/SMB check
Description: Service Message Block (SMB) is the standard resource-sharing protocol used by Windows platforms. The SMB protocol is transmitted using NetBIOS, a networking protocol designed to allow groups of PCs to interoperate. NetBIOS is accessible over TCP/IP using the NBT protocol. SMB resource sharing makes use of two different security models, “share-level” and “user-level”. In share-level security, groups of files (directory trees) are protected by a password, allowing simple workgroups to be configured simply by ensuring that they share a password. In user-level security, all attempts to access resources are authenticated with a username and password. It is possible to obtain a list of shares offered by an SMB-speaking computer by initiating an SMB session with no username or password (this is referred to as a “null session”). The information available from this transaction can be used by an attacker to conduct further attacks.
Security Concerns: N/A
Scan Details: Was able to connect with no username or password
————————
My Question is how do I correct this?