If You Don’t Use It – Get Rid Of It

If You Don’t Use It – Get Rid Of It
Facebook may have decided that you shouldn’t see the news, but we think you deserve to be in the know with Lifehacker Australia’s content. To sign up for our daily newsletter covering the latest news, hacks and reviews, head HERE. For a running feed of all our stories, follow us on Twitter HERE. Or you can bookmark the Lifehacker Australia homepage to visit whenever you need a fix.

Classic decluttering advice – the kind of stuff you’ve been reading on Lifehacker for years – starts with getting rid of what you don’t use or need. But are you applying the same principle to your systems? A demonstration of an old vulnerability in SMB 1at DEFCON highlights this, with a Windows Server rendered useless by a Raspberry Pi and a few lines of code. Beneath the surface of your apps, lie dangerous vulnerabilities.

SMB 1 is an old protocol that will be removed in the next major update to Windows 10. But until then the new flaw, dubbed SMBLoris, won’t be patched by Microsoft.

Their advice is to remove the protocol from your systems.

What we’re really talking about here is reducing the threat surface. How many applications, protocols, drivers and other flotsom and jetsom are sitting idly on your systems? And what vulnerabilities are they hiding that you know about? Or that you don’t know about.

When I interviewed Data 61’s Dr Gernot Heiser, he said that there are between two and five errors per 1000 lines of code and that between 10% and 25% of those are “security exploitable”.

In other words all those unused bits and pieces are making you more vulnerable.

With the bad guys spending more time and energy on finding vulnerable apps and services, it’s time to clean up your systems and remove anything you don’t need. If you require a legacy protocol like SMB 1, look for ways to isolate those applications so that they are air-gapped from the internet and your internal systems.