Security Basics mailing list archives
RE: USB ports Network
From: "Scott Ramsdell" <Scott.Ramsdell () cellnet com>
Date: Wed, 2 May 2007 13:38:42 -0400
Hello, Each drive will create an admin share. You can simply look at how many admin shares your machines have (try to map to f$, g$, etc through script.) Also, you can restrict access to drives via GPO. So, even if the build team forgets to disable the drive in the BIOS, AD won't allow access. Kind Regards, Scott Ramsdell CISSP, CCNA, MCSE Security Network Engineer -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Tornado Sent: Wednesday, May 02, 2007 5:41 AM To: security-basics () securityfocus com Subject: USB ports Network Hi All, We got Windows 2003 AD domain with all the workstations/servers as Windows 2000/XP/2003/Vista. As part of our security policy we do not keep the USB ports enabled and disable them from BIOS itself. But we want to make sure that there are no machines which have USB port left enabled by mistake. Is there any way/software whereby we can check/scan the ports remotely on the domain? Thanks in advance. ---------------------------------------------------------------------- Get a free email address with REAL anti-spam protection. http://www.bluebottle.com
Current thread:
- USB ports Network Tornado (May 02)
- RE: USB ports Network Scott Ramsdell (May 02)
- Re: USB ports Network MaddHatter (May 03)
- RE: USB ports Network Nick Vaernhoej (May 02)
- RE: USB ports Network DELFOSSE Frédéric (May 02)
- Re: USB ports Network phillip (May 02)
- Re: USB ports Network Tornado (May 03)
- <Possible follow-ups>
- RE: USB ports Network Andy Cuff (May 03)
- Re: USB ports Network Tornado (May 04)
- RE: USB ports Network Scott Ramsdell (May 02)