HardeningKitty icon indicating copy to clipboard operation
HardeningKitty copied to clipboard
verified publisher icon scipag

Restoring from backup adds kitty firewall rules

Open dmeagor opened this issue 1 year ago • 1 comments

This has been repoerted before but the issue tickets are a bit mixed with other issue so I've created this new one.

Basicially when restoring from a backup, additional rules blocking RDP and others are being added to the firewall which were not there before locking someone out of their server.

Example.

  • On a fresh machine, create a backup
  • apply the latest ms baseline for windows 2022
  • revert from backup

Hardening kitty named Firewall rules appear blocking all further access (RDP and more). From this point the only way to regain access was IPMI remote.

I've made this mistake twice now, I don't learn.

EDIT: This is the exact baeline that was used.

https://raw.githubusercontent.com/scipag/HardeningKitty/master/lists/finding_list_msft_security_baseline_windows_server_2022_21h2_member_machine.csv

dmeagor avatar Jul 19 '24 09:07 dmeagor

This issue is fixed in the dev version. Could you please test the fix, I would appreciate it :)

0x6d69636b avatar Jul 19 '24 17:07 0x6d69636b