![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
thewayneThere is a critical security bug that was discovered late yesterday called PrintNightmare in Windows' print spooler. It affects ALL versions of Windows!
Let me repeat that.
EVERY. FREAKING. VERSION. OF. WINDOWS.
Not just Windows 10.
Server.
7.
Vista.
And on down the line.
It allows the remote creation of privileged accounts, so even if you're not running as an admin user, the villains can create an admin account on your system.
If you're running Windows 10, there's a patch, and you should apply it toot sweet. If you're running an older version of Windows, there will be a patch soon, they're working on them. There is a stop-gap measure: disable the Print Spooler. You won't be able to print remotely, but you also won't be able to be compromised.
Read the comments on Krebs' post, since the patch was rushed out, it may be buggy. You might want to just disable the Print Spooler for now until a better patch can be created.
https://krebsonsecurity.com/2021/07/microsoft-issues-emergency-patch-for-windows-flaw/
https://gizmodo.com/printnightmare-windows-users-need-to-install-this-emer-1847243126
Let me repeat that.
EVERY. FREAKING. VERSION. OF. WINDOWS.
Not just Windows 10.
Server.
7.
Vista.
And on down the line.
It allows the remote creation of privileged accounts, so even if you're not running as an admin user, the villains can create an admin account on your system.
If you're running Windows 10, there's a patch, and you should apply it toot sweet. If you're running an older version of Windows, there will be a patch soon, they're working on them. There is a stop-gap measure: disable the Print Spooler. You won't be able to print remotely, but you also won't be able to be compromised.
Read the comments on Krebs' post, since the patch was rushed out, it may be buggy. You might want to just disable the Print Spooler for now until a better patch can be created.
https://krebsonsecurity.com/2021/07/microsoft-issues-emergency-patch-for-windows-flaw/
https://gizmodo.com/printnightmare-windows-users-need-to-install-this-emer-1847243126
no subject
Date: 2021-07-09 11:45 pm (UTC)no subject
Date: 2021-07-10 12:53 am (UTC)Wouldn't it be nice if computers behaved rationally.
The sad thing is that the patch that MS issued? It doesn't completely fix things if you're responsible for a Windows domain controller. But apparently it's good enough for stand-alone PCs, so people like us'uns should be fine.
I did three stand-alone public PCs and yesterday I did four laptops that we check out to students. One of them was supposedly fixed by IT for a problem of it not updating A/V, well, it's still not doing that and it's not updating anything at all. The other three eventually updated. I moved into a proper office and have a nice big desk with room that I could work on three laptops at a time! It was very sweet.
So whenever we get a new IT director and staff, I'll open another ticket. The director retires EOM and has no staff at all right now, it's not worth bothering opening a ticket.