Port Blocking Windows 10 - Microsoft Community
1. ics-cert recommends users take defensive measures minimize risk associated petya malware. specifically, users should consider following:
- apply microsoft patch, ms17-010.
- disable smbv1 on every system connected network. information on how disable smbv1 available microsoft(link external). while many modern devices operate correctly without smbv1, older devices may experience communication or file/device access disruptions.
- microsoft recommends(link external) blocking traffic on port 139/tcp , 445/tcp prevent propagation. microsoft has recommends users can disable remote wmi , file sharing.
- review network traffic confirm there no unexpected smbv1 network traffic. following links provide information , tools detecting smbv1 network traffic , microsoft’s ms17-010 patch:
- isolate or protect vulnerable embedded systems cannot patched potential network exploitation.
- minimize network exposure control system devices and/or systems, , ensure not accessible internet.
- locate control system networks , devices behind firewalls, , isolate them business network.
2. please provide detailed instructions users can follow ensure recommended action above can applied?
3. better still, there an application can run that update requirements needed safeguard our systems.
4. use windows 10 home on dell inspiron 24-5459 i7-6700t w/12gb ram , touch screen.
thanks provided.
billy
here's easy way ensure bullet point #1 done:
- right-click start button, choose run
- type optionalfeatures (all 1 word, no space) , click ok
- in list, find smb1 entry , uncheck it, click ok
- you'll prompted reboot finish disabling smbv1.
to honest, of other steps listed here pretty moot once you've disabled service, , upcoming update windows automatically people don't need manually.
Windows / Windows 10 / Security & privacy / PC
Comments
Post a Comment