Hardware & Technical Are you a Windows SysAdmin ? If so, disable the spooler service on your DC's

Seems it has implications that go well beyond domain systems.

My general practice has always been that if I'm not intent on actually using something, I disable or remove it. Stuff like this is why.
 
@Morbad Yes, Basically any Windows machine with a running Print Spooler service is at risk, including client machines and standalone machines.

Disabling services and uninstalling un-used applications/features is good practice it helps minimise attack surface area.
 
Last edited:

FAQ​

Is this the vulnerability that has been referred to publicly as PrintNightmare?
Yes, Microsoft has assigned CVE-2021-34527 to this vulnerability.

(Sure, that'll fix it)
 
Back
Top Bottom