Security Basics mailing list archives
RE: USB Security
From: "Keller, Tim" <Tim.Keller () stratus com>
Date: Tue, 23 Nov 2004 15:52:16 -0500
I see this as a poor tool for a bad situation. If you've got a situation where you've got a user whose got access to information that can't under any circumstances leave the building, why are you giving this person a real PC in the first place? This would seem to be the perfect opportunity to deploy a thin client system where the real machine is locked away in a server room and the person has a monitor/keyboard/mouse and nothing else. Yeah, the initial expense is going to be more, but it has to be weighted against the cost of the data this person works leaving the building... -----Original Message----- From: Jimi Thompson [mailto:jimi.thompson () gmail com] Sent: Monday, November 22, 2004 10:10 PM To: Beauford, Jason Cc: Marios Papaioannou; Gray, Steve; security-basics () securityfocus com Subject: Re: USB Security Rather than use hiderun32.exe, use something like getadmin.exe and show your management what you can if you 1) bring in 4 GB of mal-ware and 2) leave with 4 GB of their salary data to post on the web or in the lunchroom on the bulletin board. Jimi On Mon, 22 Nov 2004 16:46:38 -0500, Beauford, Jason <jbeauford () eightinonepet com> wrote:
I may be late here and someone may have mentioned it, but you can disable the USB Drivers for Windows XP via the registry. Even better Logon Scripts. http://support.microsoft.com/default.aspx?scid=kb;en-us;823732 JMB -----Original Message----- From: Marios Papaioannou [mailto:m.papaioannou () cytanet com cy] Sent: Sunday, November 21, 2004 4:35 AM To: 'Gray, Steve' Cc: security-basics () securityfocus com Subject: RE: USB Security Hello Steve, From my point of view, the only 100% secure way to reduce the risk of usb is to disable the usb ports from bios. Any other suggestions are welcome. Regards, Marios -----Original Message----- From: Gray, Steve [mailto:SGray () wakefield gov uk] Sent: Saturday, November 20, 2004 1:15 AM To: security-basics () securityfocus com Subject: RE: USB Security Hi, This is something we are very interested in at the moment. I have found some software, from a firm called Generix, that looks as though it will control the use but it is difficult to get managers to pay for it. They seem to understand risks from floppy disks and CD's, but not from USB devices. Any practical policy guidelines to limit risks would be welcome. Steve Gray Wakefield MDC -------------------------- Sent from my BlackBerry Wireless Handheld
-- Thanks, Jimi
Current thread:
- RE: USB Security Gray, Steve (Nov 19)
- Re: USB Security Gaspar de ElĂas (Nov 22)
- RE: USB Security Marios Papaioannou (Nov 22)
- Re: USB Security Dave Aronson (Nov 22)
- Re: USB Security GuidoZ (Nov 22)
- RE: USB Security D. Weiss (Nov 22)
- <Possible follow-ups>
- RE: USB Security Beauford, Jason (Nov 22)
- Re: USB Security Jimi Thompson (Nov 23)
- Re: USB Security GuidoZ (Nov 24)
- Re: USB Security Jimi Thompson (Nov 23)
- Re: USB Security ttate (Nov 23)
- RE: USB Security Keller, Tim (Nov 26)