How to implement the ASD Essential 8 via Group Policy

The Australian Government Department called the Australian Signals Directorate has a list of mitigation strategies that is used to help protect IT system against security risks. This list is called the “ASD Essential 8“. While this its generated by the Australian Government department it is an excellent starting point for securing any organisation or government …

Continue reading ‘How to implement the ASD Essential 8 via Group Policy’ »

Blocked Site Based GPO due to Blocked SOM

I recently came across a problem with applying a site linked GPO to some Citrix servers that were giving Blocked SOM (see below) as the reason for being denied. For the longest time I could not figure out why the GPO was being blocked. It was then with some help that I found out that …

Continue reading ‘Blocked Site Based GPO due to Blocked SOM’ »

How to disable SMB 1 on Windows 7 via Group Policy to Prevent WannaCry

Update 1: These instructions will mitigate WannaCry / Wcry / WannaCrypt virus propagation on Windows 7 and later (Windows 10 is not affected). For more technical details about the virus see Troy Hunts blog at https://www.troyhunt.com/everything-you-need-to-know-about-the-wannacrypt-ransomware/ In case you have not got the message yet SMB 1 protocol Bad and that according to Microsoft you …

Continue reading ‘How to disable SMB 1 on Windows 7 via Group Policy to Prevent WannaCry’ »

How to disable SSL v2 and SSL v3 on Windows Server via Group Policy

In this article I will show you how to disable the SSL v2 and SSL v3 protocols on the Windows Server so that it no longer offers the depreciated (a.k.a. Broken) SSL v2 and v3 security protocols. It also does not hurt if you apply this policy settings to your Windows client computers in case any of them have …

Continue reading ‘How to disable SSL v2 and SSL v3 on Windows Server via Group Policy’ »