WannaCry on Samba = SambaCry

After the WannaCry attack on Windows it was the question if the open source implementation SAMBA may have a similar vulnerability and in fact it has as currently reported: CVE-2017-7494 Affected are all versions from version 3.5.0 onwards. Patches are available and every distribution should have an update ready in their repos. A workaround is to add the parameter

nt pipe support = no

to the [global] section of the smb.conf file.

Samba_

AMD’s Financial Analyst Day 2017

This years financial analyst day had more product previews and launches than any before. Even the AMD Crew now had 6 speaker compared to 4 in the last year. The big news on this day was the introduction of the Server Epyc CPU code name “Napples” (32 Cores 64 Threads). This also means that good known Opteron brand is now history. Another highlight was the introduction of the upcoming premium desktop CPU AMD Ryzen 9 Threadripper (16 Cores 32 Threads). In the 2nd half of the year is also the launch of the Ryzen Mobile APUs with integrated Vega Graphics.

Upcoming AMD Ryzen 16 Ccres 32 Threads Threadripper
Upcoming AMD Ryzen 9 with 16 Ccres 32 Threads Threadripper

Launch Dates:

  • 2H17 AMD Ryzen 3 Desktop
  • Summer 2017 AMD Ryzen 9 Threadripper
  • 2H17 AMD Epyc Server CPU
  • 2H17 AMD Ryzen Consumer Mobile
  • 2H17 AMD Ryzen Pro Commercial Desktop
  • 1H18 AMD Ryzen Pro Commercial Mobile

WannaCrypt Ransomware Attack

The WannaCry/WannaCrypt Ransomware attack successfully compromised tons of systems already by using the classic e-mail attachment vector and the 2nd vector is to use the vulnerable SMB protocol to attack machines in internal networks to infect them as well.

To fix the SMB issue Microsoft already released an update in march 2017, security bulletin MS17-010.

Description:
This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if an attacker sends specially crafted messages to a Windows SMBv1 server.

Microsoft now also released an update for Windows XP and Windows Server 2003 (KB4012598) to fix the issue. Automatic Updates should find and install the updates or you can find them in the Microsoft Update Catalog. Microsoft has some more information about this issue on the MSRC team blog.

Available Patches:

Microsoft kills future security updates for Windows 7 on modern hardware

On the April 2017 patch day Microsoft has released two security bulletins KB4015549 and KB4015546 that will block future security updates on Windows 7 in case a newer processor is detected that is part of the following CPU Families: Intel KabyLake, AMD Bristol Ridge and AMD Ryzen.
The block mechanism is enforced by the new Windows Update Agent Version 7.6.7601.23735 this also prevents manual update installs. There is a UI nag screen that reminds you of the not supported hardware, even when the system is working ok.

The error in the log file looks like this:

c98 Agent WARNING: WU client failed Searching for update with error 0x80240037
f24 AU >>## RESUMED ## AU: Search for updates [CallId = {692C634C-461A-46AC-82FD-16C025C65F22}]
f24 AU WARNING: Failed because device hardware is not supported and not exempt update was discovered with this scan.
f24 AU # WARNING: Search callback failed, result = 0x80240037
f24 AU # WARNING: Failed to find updates with error code 80240037

An Offline install will also not work:

444 PT + Offline serviceId = {CB8C92B3-A833-483F-A728-F55D2C09DAEC}
444 Agent WARNING: Only detected non-exempt updates on device with unsupported processor.
444 Agent FATAL: Device has unsupported processor. Return 80240037.
444 Agent * WARNING: Exit code = 0x80240037

AMD’s Ryzen 7 release

After all the time of waiting AMD now just released the first part of the new high end CPU line called Ryzen 7 with all new Zen cores to the market. It has been a lot of work in the past years to get the new core ready for launch. Some of the people of the Zen team talk about the work on the Zen core and products, including:

  • Suzanne Plummer (Sr. Director Design Engineering)
  • Mike Clarke (Sr. Fellow Design Engineering)
  • Jim Anderson (Sr. Vice President and GM Computing and Graphics)
  • John Taylor (Corp. VP Marketing)
  • Gerald Youngblood (Sr. Director Marketing)
  • James Prior (Product Manager)

The Ryzen 7 model list:

  • AMD Ryzen 7 1800X (8C/16T, 3.6GHz Base/4.0 Turbo, 16MB L3 Cache, 95W TDP, XFR, Socket AM4)
  • AMD Ryzen 7 1700X (8C/16T, 3.4GHz Base/3.8 Turbo, 16MB L3 Cache, 95W TDP, XFR, Socket AM4)
  • AMD Ryzen 7 1700 (8C/16T, 3.0GHz Base/3.7 Turbo, 16MB L3 Cache, 65W TDP, Socket AM4)

Overclocking
Most of the Ryzen CPUs have their own user friendly auto overclocking feature called XFR.
For advanced users AMD just released the AMD Master Application which is a overclocking and monitoring tool for detailed settings of the CPU. For more information check out the AMD Ryzen Master Overclocking Users Guide. Download of Ryzen Master is available from this site.

Intel’s Kaby Lake Family

Intel completed the Kaby Lake Family of CPUs with the release of the Kaby Lake Desktop CPU in January 2017. The Mobile CPUs were already released in the end of 2016. Kaby Lake is a refresh of Skylake with higher clocks and an improved graphics core due improved manufacturing.