Re: Disabling USB mass storage
From: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] (sbradcpa_at_pacbell.net)
Date: 03/04/05
- Previous message: Sergey V. Gordeychik: "RE: Disabling USB mass storage"
- In reply to: Steven Hay: "RE: Disabling USB mass storage"
- Next in thread: Mark Teicher: "Re: Disabling USB mass storage"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 03 Mar 2005 21:14:13 -0800 To: Steven Hay <shay@communitysavings.ca>
HOW TO: Disable the Use of USB Storage Devices in Windows XP:
http://support.microsoft.com/default.aspx?scid=kb;en-us;823732
Disable completely?
Steven Hay wrote:
>Good topic question, one we're having issues with as well, but with XP SP1.
>
>We want to disable any removable drives from working on our 400+
>workstations without having to visit each one.
>
>I tried denying access to usbstor.sys in the GPO, and confirmed that the
>policy was applied to our test system. But it seems like the system
>privliges override the GPO rights (I'm guessing) as the removable drive
>letter pops up and is usable when a USB drive is connected.
>
>Anyone have any experience with locking these down using GPO?
>
>Steve
>
>-----Original Message-----
>From: Moser, Scott [mailto:scott.moser@smead.com]
>Sent: March 3, 2005 12:40 PM
>To: Martin a Marika TYDOROVCI; focus-ms@securityfocus.com
>Subject: RE: Disabling USB mass storage
>
>
>Create new key HKLM\System\CurrentControlSet\Control\StorageDevicePolicies
>and then create REG_DWORD called WriteProtect and set to 1. This will
>prevent write only (not read) in XP SP2 only.
>
>-----Original Message-----
>From: Martin a Marika TYDOROVCI [mailto:tydy@szm.sk]
>Sent: Wednesday, March 02, 2005 2:10 PM
>To: focus-ms@securityfocus.com
>Subject: Disabling USB mass storage
>
>Hi list,
>
>Does anyone knows a way to disable USB mass storage device in Win XP? I
>need to disable using devices such as USB flash drive, card readers, etc.
>
>Regards
>
>------------------------------------------------------------------------
>---
>------------------------------------------------------------------------
>---
>
>
>
>---------------------------------------------------------------------------
>---------------------------------------------------------------------------
>Please note that Internet email is not always private, secure or reliable.
>The sender accepts no liability for any damages caused by any virus
>inadvertently transmitted with this email. Any opinion expressed in this
>email is solely that of the author, unless clearly indicated otherwise.
>This email, and any attachments, may contain confidential and/or proprietary
>information that is intended only for use by the addressee. If you are not
>the intended recipient, any use, dissemination, forwarding, printing, or
>copying of this email is strictly prohibited. If you received this email in
>error, please delete the email and advise the sender of the delivery error.
>
>---------------------------------------------------------------------------
>---------------------------------------------------------------------------
>
>
>
>
-- Chapter 4 of The Complete Patch Management Book: https://www.ecora.com/ecora/jump/pm149.asp So why is it the only book on NT Event Logging is out of print? http://tinyurl.com/3kwc2 And if you don't know about www.eventid.net You should! --------------------------------------------------------------------------- ---------------------------------------------------------------------------
- Previous message: Sergey V. Gordeychik: "RE: Disabling USB mass storage"
- In reply to: Steven Hay: "RE: Disabling USB mass storage"
- Next in thread: Mark Teicher: "Re: Disabling USB mass storage"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
