NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
SMB 1.0 (Given Wanna Cry)
Out of curiosity in the latest 6.7.1 firmware is SMB 1.0 disabled?
Can we control SMB so that it ONLY used 3.0 or 2.0-3.0 for example?
The Wanna Cry issue used an attack vendor to attack Windows machines that hadn't had a security update installed. Our NAS units don't run Windows.
The latest RAIDiator 4.1.x and RAIDiator-arm uses samba 3.5.x. The latest RAIDiator-x86 4.2.x uses samba 3.6.x
Experimental SMB2 support was added in samba 3.5.x, but really you should be using a newer version of samba to use it. 3.6 isn't much newer. I'd be wanting to use newer than that. To my knowledge we don't have any plans to update samba on these old OSes.
I think SMB2 support is turned off by default on all those models.
OS6 currently uses samba 4.4.x, a much newer samba series.
I've passed on the feature request to be able to disable SMB1 support from the GUI for OS6 devices.
From my understanding you should be fine with Windows 10. Obviously the recommendation is to patch it to latest.
From Microsoft (https://blogs.technet.microsoft.com/mmpc/2017/05/12/wannacrypt-ransomware-worm-targets-out-of-date-systems/)
"The exploit code used by WannaCrypt was designed to work only against unpatched Windows 7 and Windows Server 2008 (or earlier OS) systems, so Windows 10 PCs are not affected by this attack."
What I actually did was turn off my NAS. Did not want to risk some other vector hitting them.
So will turn it back on until this "all blows over".
Anyway, hope the above URL helps.
Thanks, all our Windows systems are patched, but the general recommendation shown here and elsewhere is to turn off SMBv1 in addition to patching. Turning off the NAS seems extreme and pointless in this instance since the NAS runs a variant of Linux and the current Wannacry/wanncrypt can ONLY be spread by and to Windows Systems.
There is no question that SMBv1 systems will likely to subject to some other attack, so turning it off on Windows systems is the best route to go. I'm not a RAIDiator expert and am not seeing an option to move it to v2/v3. Thanks for your reply though.
I believe RAIDiator 4.x is limited to SMB v1. ReadyNAS OS 6.7 has SMB v3 support.
Interestingly it must support something other than SMB v1. I robooted the ReadyNas after enabling the NFS service, and just for laughs thought I'd try to see if I could access from explorer, and I can. I was expecting to have to enable NFS on WIN10, and as you can see from here, neither are enabled. Interesting.
I've tried disabling SMB1 on a W10 laptop and doing that causes ReadyNAS servers to dissappear from the Network Computers window. Turning it on makes everything show up nicely.
As much as I'd love to turn off SMB1, it doesn't look like you can simply do that w/o consequences.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
