About Show #796
Are you stuck in the print nightmare? Richard talks to Jeremy Moskowitz about the ongoing battle over potential exploits through the point-and-print system in Windows. Jeremy talks about the discovery of the vulnerability in July 2021 and how it has led to a series of patches and registry key changes to resist a potential exploit. Meantime, people need to print! There are several workarounds with Group Policy, and Jeremy's own PolicyPak has some practical solutions. If you put some time into thinking through how your organization prints, you can find a solution that works and is secure!
Links:
- July Windows Print Spooler Remote Code Execution Vulnerability
- August Windows Print Spooler Remote Code Execution Vulnerability
- RestrictDriverInstallationToAdministrator
- Group Policy Settings for Controlling Printers
- Ultimate Guide to PrintNightmare
- PDQ Deploy
Recorded September 9, 2021