NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

Platypus69's avatar
Platypus69
Luminary
May 15, 2017
Solved

SMB 1.0 (Given Wanna Cry)

Out of curiosity in the latest 6.7.1 firmware is SMB 1.0 disabled?   Can we control SMB so that it ONLY used 3.0 or 2.0-3.0 for example?
File Sharing
  • mdgm-ntgr's avatar
    mdgm-ntgr
    May 23, 2017

    The Wanna Cry issue used an attack vendor to attack Windows machines that hadn't had a security update installed. Our NAS units don't run Windows.

     

    The latest RAIDiator 4.1.x and RAIDiator-arm uses samba 3.5.x. The latest RAIDiator-x86 4.2.x uses samba 3.6.x

     

    Experimental SMB2 support was added in samba 3.5.x, but really you should be using a newer version of samba to use it. 3.6 isn't much newer. I'd be wanting to use newer than that. To my knowledge we don't have any plans to update samba on these old OSes.

     

    I think SMB2 support is turned off by default on all those models.

     

    OS6 currently uses samba 4.4.x, a much newer samba series.

     

    I've passed on the feature request to be able to disable SMB1 support from the GUI for OS6 devices.

mdgm-ntgr's avatar
mdgm-ntgr
NETGEAR Employee Retired
May 23, 2017

The Wanna Cry issue used an attack vendor to attack Windows machines that hadn't had a security update installed. Our NAS units don't run Windows.

 

The latest RAIDiator 4.1.x and RAIDiator-arm uses samba 3.5.x. The latest RAIDiator-x86 4.2.x uses samba 3.6.x

 

Experimental SMB2 support was added in samba 3.5.x, but really you should be using a newer version of samba to use it. 3.6 isn't much newer. I'd be wanting to use newer than that. To my knowledge we don't have any plans to update samba on these old OSes.

 

I think SMB2 support is turned off by default on all those models.

 

OS6 currently uses samba 4.4.x, a much newer samba series.

 

I've passed on the feature request to be able to disable SMB1 support from the GUI for OS6 devices.

PHolder's avatar
PHolder
Aspirant
Jun 06, 2017

mdgm wrote:

The Wanna Cry issue used an attack vendor to attack Windows machines that hadn't had a security update installed. Our NAS units don't run Windows.

 

Don't be pedantic.  No one suggested that ReadyNAS devices ran Windows.  The issue is that the recommended fix for the WannaCry was to disable SMB 1.0 and this makes legacy ReadyNAS devices that don't support SBM 2 or greater unreachable by Windows hosts on which this advice has been followed.

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More