[Forgot Password]
Login  Register Subscribe

23631

 
 

122183

 
 

98060

 
 

909

 
 

79198

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-33958-0

Platform: win8.1Date: (C)2015-10-14   (M)2017-10-16



Devices: Prevent users from installing printer drivers It is feasible for a attacker to disguise a Trojan horse program as a printer driver. The program may appear to users as if they must use it to print, but such a program could unleash malicious code on your computer network. To reduce the possibility of such an event, only administrators should be allowed to install printer drivers. However, because laptops are mobile devices, laptop users may occasionally need to install a printer driver from a remote source to continue their work. Therefore, this policy setting should be disabled for laptop users, but always enabled for desktop users.


Parameter:


Technical Mechanism: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options!Devices: Prevent users from installing printer drivers (2) REG: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Print\Providers\LanMan Print Services\Servers!AddPrinterDrivers

References:

Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:29185


OVAL    1
oval:org.secpod.oval:def:29185
XCCDF    3
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_8_1
xccdf_org.secpod_benchmark_general_Windows_8_1
xccdf_org.secpod_benchmark_PCI_3_2_Windows_8_1

© 2013 SecPod Technologies