New
#20
The solution should be for the IT department to remove their .reg file from running at startup.
Add, Delete, Enable, or Disable Startup Items in Windows 10 | Tutorials
The solution should be for the IT department to remove their .reg file from running at startup.
Add, Delete, Enable, or Disable Startup Items in Windows 10 | Tutorials
Quite by chance I came across this tutorial as well as the one here: https://www.howtogeek.com/321072/how...c-from-attack/
I was taken aback by the fact that although it is supposed to be disabled or at least not enabled by default, on my Win 10 1803 machine it was in fact enabled under “Turn Windows features on or off”.
The box was filled in, which I understand means only some features were enabled?
Beneath SMB1 is a box with a check-mark called SMB Direct; not knowing what exactly this is I left it for now but should this also be disabled?
I have now disabled it but is there any explanation as to why it was enabled in the first place?
Additionally, you mention SMB2 but I did not see that under additional options, is that normal?
Thanks!
Last edited by Rubi; 13 Mar 2019 at 04:10. Reason: adding more information
The major issue with disabling SMB1 is that although Microsoft's advice to disable the SMB1 option makes sense from a Microsoft point of view , as all current and recent, [Vista Onwards], Microsoft operating systems no longer require SMB1, we do not live in a pure microsoft world.
There are many devices that you will find in a modern home and business, that are not under Microsoft's control, [ NAS Drives, TV and media Devices Etc], some of them will not operate with SMB1 disabled, so the original Microsoft reaction to the Wannacry, to completely disable the SMB1 protocol and include a task to disable it on each startup, caused a lot of issues for many people.
The SMB is now disabled on new upgrades but if manually disabled will now remain as set by the user, [until the next Bi-annual upgrade, at least]
SMB2 and SMB3 are in full use by microsoft so do not have an option to disable them as this would disable a lot of network relient systems.
SMB Direct is one of those options that is rarely used, and should only be active if you need it to operate a specific system or hardware. THis will normally be handled by the software or hardware driver installer so there is no need to manually change anything unless prompted to by an installer or Help tech
Hi Barman58,
If I understand you correctly, you are essentially saying that either:
1. I may need the protocol at some point in the future for one of the devices you mentioned
or
2. In the next feature upgrade Microsoft will override my settings and enable SMB1 again (albeit partially)
What would you recommend now, enable again or just leave as is?
And should I disable SMB Direct or not?
Thanks!
Not knowing what exact devices you share files with I would recommend that you take the most secure route, disable SMBv1, if you then find that you cannot load/save files to any specific device, you can check the specification of that device, and if you find that it needs SMBv1, you should only then enable SMBv1.
Microsoft will if they do anything in future updates [Previous changes on upgrade have caused users issues ], disable SMBv1 rather than enable it so if you do not require it as discussed above you are safe from Microsoft changing things.
As for SMB Direct, the default is for it to be disabled, if you have no specific reason to switch it to enabled it's best to set it to disabled.
I have now disabled both SMBv1 and SMB Direct, following your advice regarding the most secure options.
Should I ever have need for it with one of the devices you mentioned I can always review again but for now I prefer the safe options.
Thanks again for the informative responses and help, it is appreciated.
Regards!
SMB1 can still be reinstalled in all editions of Windows 10 and Windows Server 2016.
But... how?
I googled for days (!) how to do that, not just enable/disable SMBv1.
Last edited by Badabing; 12 Feb 2020 at 07:27.