Re: Disabling USB mass storage

From: Glenn S. (glenn_at_secureinformation.net)
Date: 03/03/05

Next message: adisegna_at_siscocorp.com: "RE: Changing system time for testing and development"

Previous message: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: Exchange Problem"
In reply to: Martin a Marika TYDOROVCI: "Disabling USB mass storage"
Next in thread: Lynn Preston: "Re: Disabling USB mass storage"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "Martin a Marika TYDOROVCI" <tydy@szm.sk>, <focus-ms@securityfocus.com>
Date: Thu, 3 Mar 2005 14:33:20 -0500

A glue gun or superglue works wonders. If that is too extreme there are some
other options.

Do you have SP2 installed? If yes then there are GPO's you can use. This
site details a way to do it for both SP2 and earlier:
I found it on a website that addresses the issue of read-only USB ports.
The second section covers pre-SP2 machines. I have not tested it yet myself.
http://www.gpanswers.com/faq/?id=10

How do I prevent people from writing data to the USB port? (ie: USB Flash
disk, etc)

You can create an ADM template to do this.

Here is the code to restrict XP/SP2:

(This will 'Write Protect' the device, similar to flipping the tab on a
floppy disk)

CLASS MACHINE

CATEGORY "USB Storage"

  POLICY "Write Protect USB Storage"
    KEYNAME "SYSTEM\CurrentControlSet\Control\StorageDevicePolicies"
    VALUENAME "WriteProtect"
    VALUEON NUMERIC 1
    VALUEOFF NUMERIC 0
  END POLICY
END CATEGORY

Save as a .ADM file, load it in, and go !

To prevent machines pre-XP/SP2...

(This will disable the storage device completely, i.e no read or write)

CLASS MACHINE

CATEGORY "USB Storage"

  POLICY "Disable USB Storage"
    KEYNAME "SYSTEM\CurrentControlSet\Services\USBSTOR"
    VALUENAME "Start"
    VALUEON NUMERIC 4
    VALUEOFF NUMERIC 3
  END POLICY
END CATEGORY

----- Original Message -----
From: "Martin a Marika TYDOROVCI" <tydy@szm.sk>
To: <focus-ms@securityfocus.com>
Sent: Wednesday, March 02, 2005 3:10 PM
Subject: Disabling USB mass storage

> Hi list,
>
> Does anyone knows a way to disable USB mass storage device in Win XP? I
> need to disable using devices such as USB flash drive, card readers, etc.
>
> Regards
>
> ---------------------------------------------------------------------------
> ---------------------------------------------------------------------------
>

---------------------------------------------------------------------------
---------------------------------------------------------------------------

Next message: adisegna_at_siscocorp.com: "RE: Changing system time for testing and development"

Previous message: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: Exchange Problem"
In reply to: Martin a Marika TYDOROVCI: "Disabling USB mass storage"
Next in thread: Lynn Preston: "Re: Disabling USB mass storage"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

OOPS in 2.6.0-test2 with USB flash reader
... hub 1-0:0: new USB device on port 2, ... Vendor: Generic Model: STORAGE DEVICE Rev: 0111 ... SCSI device sda: 31232 512-byte hdwr sectors ... USB Mass Storage data integrity not assured ...
(Linux-Kernel)
PROBLEM: <oops when unplugging USB Flash disk, somewhere in SCSI subsystem>
... oops when unplugging USB Flash disk, somewhere in SCSI subsystem ... I'm using hotplug to mount my USB Flash disk as soon it is plugged in. ... Initializing USB Mass Storage driver... ...
(Linux-Kernel)
Re: some help please w/ USB drive (NTFS) on 2.4.32 kernel - works for a while, but then I start
... Sep 2 17:20:38 buster kernel: Initializing USB Mass Storage driver... ... Sep 2 17:21:20 buster kernel: Attached scsi disk sda at scsi0, ...
(comp.os.linux.setup)
Re: How to make usb memory stick visible as drive.
... Standard Universal PCI to USB controller ... > USB Mass Storage Device ...
(microsoft.public.windowsxp.embedded)
My USB pendrive broke in 2.6.1
... Something in the USB storage code, the FAT code or the SCSI code changed ... SCSI device sda: 512000 512-byte hdwr sectors ... USB Mass Storage data integrity not assured ...
(Linux-Kernel)