time to disable SMB1 by default
Much of the world have moved on past SMB1, so much so that servers that have SMB1 enabled are reported by security scanners as "insecure".
While our SMB1 is not and has never been vulnerable to the defects referred to by those security scanners, most of us supporting this code have grown tired of explaining that to the people who pay for and trust the results of these so called security scans. Let's go ahead and make SMB1 disabled by default. Those who need it can turn it back on.
Import this fix from github/Nexenta
commit a9c06f166c65c0c47fd27fe5af14f0cde43f4f6d Author: Gordon Ross <firstname.lastname@example.org> Date: Mon Jul 1 16:00:34 2019 -0400 NEX-20541 time to disable SMB1 by default (redo) Reviewed by: Rick McNeal <email@example.com> Reviewed by: Sanjay Nadkarni <firstname.lastname@example.org> Reviewed by: Matt Barden <email@example.com> Reviewed by: Yuri Pankov <firstname.lastname@example.org> 2 2 usr/src/cmd/smbsrv/smbd/server.xml 9 6 usr/src/lib/smbsrv/libsmb/common/smb_cfg.c