New
#31
I will check for for restore point. Disck image i do not have! But i will have to wait untill mondey, becouse PC is in the office!
I'll watch that video later!
Thx!
I will check for for restore point. Disck image i do not have! But i will have to wait untill mondey, becouse PC is in the office!
I'll watch that video later!
Thx!
I watched the whole 27 minute video. He's got a real can of worms on his hands.
But we're still at the same place - uninstall the update from the print server machine and wait for Microsoft.
Oh Jeez.... I never intended anyone to watch that video. I was only demonstrating that other folks were having this problem.
(Half of them were you!)
That guy is WAY too long winded. I cut it off after 10 minutes and jumped forward to see if he EVER talked about the question.
Long winded for sure. He basically said what we already know - uninstall it.
Here is the notice from Microsoft regarding the change that is causing my (and some others) problem:
Point and Print Default Behavior Change
MSRC / By MSRC Team / August 10, 2021
Our investigation into several vulnerabilities collectively referred to as “PrintNightmare” has determined that the default behavior of Point and Print does not provide customers with the level of security required to protect against potential attacks.
Today, we are addressing this risk by changing the default Point and Print driver installation and update behavior to require administrator privileges. The installation of this update with default settings will mitigate the publicly documented vulnerabilities in the Windows Print Spooler service. This change will take effect with the installation of the security updates released on August 10, 2021 for all supported versions of Windows, and is documented as CVE-2021-34481.
This change may impact Windows print clients in scenarios where non-elevated users were previously able to add or update printers. However, we strongly believe that the security risk justifies this change. While not recommended, customers can manually disable this mitigation with a registry key, which is outlined in the following KB Article:
KB5005652 How to manage new Point and Print default driver installation behavior
Disabling this mitigation will expose your environment to the publicly known vulnerabilities in the Windows Print Spooler service and we recommend administrators assess their security needs before assuming this risk.
As always, we recommend customers install all security updates as soon as possible. More details on all updates can be found in the Microsoft Security Update Guide. Customers who have automatic updates enabled are automatically protected.
The MSRC Team
Sounds to me that they are not going to fix this problem. Both of my PCs were set up and the printers installed with administrator level user. In fact, both PCs only have one user and it is a local administrator account. There are no non-elevated user accounts on either PC.
My setup is a desktop connected to an HP printer via USB with home network computers printing to the USB connected printer. Uninstalling the KB5005565 update from the host computer solved the problem for me. Remote computers will still print to the HP printer even with the KB500565 installed. I am hoping some of the smart minds here will figure out a work around that solves the printing issue without uninstalling the entire update.
Just as a note (mentioned previously): I did the registry change mentioned in the article above when I had KB5005565 installed on the host computer. It did not work (for me).
Now, I made the registry change on the host computer (the one with the printers attached by USB). Perhaps we are supposed to make this change on the client computer(s) (the ones that access the printers through the host computer). Perhaps we are supposed to make this change on all the computers. This is not clear.
Also note that my client computers do not have KB5005565 installed yet. I held off on that when this problem came up. I am not sure if that would make any difference in behavior.
And remember, the registry change is only a workaround - it disables the security patch - not a solution.
The solution we are looking for is how to share printers - hard wire connected to the host - with KB5005565 installed and fully functioning.
I'm still working on it. Any thoughts or information is, as always, greatly appreciated.
Everything is working this morning !!!!! I look in the update history and see that it deleted KB5005033 which I did not have permission to delete.
And an installed 21H1 version with KB5005565 and some other stuff.
And he allowed me to add a printer without any problems !!!!
Elsewhere the same computers and the same printer still don't work even though they both have 21H1 and KB5005565 !!!! madness