Closed v-p-b closed 1 year ago
HardeningKitty has (for the moment) no feature to use version or patch level information for finding lists. Therefore I decided setting the default value to NULL.
I recommend setting this value in any case, and if it is not explicit set this will be a finding. This issue is addressed in the development repo and will be updated here in the next update.
Multiple rule lists define the Point and Print driver installation restriction with the default value of 0:
https://github.com/scipag/HardeningKitty/search?q=RestrictDriverInstallationToAdministrators
Meanwhile, according to the documentation:
"Windows updates released August 10, 2021 and later will, by default, require administrative privilege to install drivers."
I don't know if HardeningKitty can take into account the current update level of the target system. If it can't, maybe the updated default could be reflected in lists used for builds released after the above date?