Venkatesh Srikantiah
asked on
Disabling SMB in the wake of Wanacrypto ransomware
one of the suggestion was to disable SMB traffic to ensure that the new ransomware has a minimal effect. I was just wanting to know the full extent of issues we might get by disabling SMB protocol on our window 7 computers. What precaution I need to take to roll this out in an orderly fashion and is there any easier way of doing it through group policy to disable globally?
Even though we have fully patched all our servers, i thought if this not disrupt too many thing I might as well roll it out in a phased manner to ensure it is completely disabled.
1. What are the effects of doing this?
2. How important to retain this for certain functionalities?
Even though we have fully patched all our servers, i thought if this not disrupt too many thing I might as well roll it out in a phased manner to ensure it is completely disabled.
1. What are the effects of doing this?
2. How important to retain this for certain functionalities?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I think then there is no need to remove SMB.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Also read my Article "Potpourri"
I had a service disabled while on ship and it is not fun to troubleshoot something that should not have been disabled.
https://www.experts-exchange.com/articles/29614/Potpourri-An-eclectic-colllection-of-short-stiores-about-Windows-and-Network-issues-and-solutions.html
I had a service disabled while on ship and it is not fun to troubleshoot something that should not have been disabled.
https://www.experts-exchange.com/articles/29614/Potpourri-An-eclectic-colllection-of-short-stiores-about-Windows-and-Network-issues-and-solutions.html
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Newer systems do not have SMBv1 so far as I know. That has been replaced in newer systems.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
My issue has been resolved, I did end up leaving the SMB turned on and patched all the workstations and Servers as advised as a mitigation measure. We also took the opportunity to retire one of the Windows 2003 server
Thanks for sharing and kindly close the question, marking accepted and assisted input accordingly, if no further queries.
Author has abandoned the question
ASKER