RE: Restrict certain file types on a Windows 2000 share

---

• From: "Murda Mcloud" <murdamcloud@xxxxxxxxxxx>
• Date: Wed, 12 Sep 2007 08:58:31 +1000

---

You could also check out sorter
http://www.sleuthkit.org/sleuthkit/man/sorter.html
Also there is a tool called foremost that can ident files by looking at the
headers etc inside the file so maybe that could somehow used. It is
primarily used for recovery but I don't know whether it could have some
application.
http://foremost.sourceforge.net/

I don't know if there is an equivalent windows tool for doing this kind of
thing. Would be great if there was.
-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On
Behalf Of Ansgar -59cobalt- Wiechers
Sent: Monday, September 10, 2007 11:21 PM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: Re: Restrict certain file types on a Windows 2000 share

On 2007-09-06 Mary Hendrix wrote:

Second, I was wondering if there is a way to prevent users from
storing mp3 or other file types on a shared disc that is supposed to
be used only to store .doc, .xls and so.

No. A file's name is not related to it's content, and a file's content
is not inspected when it's stored on a share. Thus an MP3 could actually
be given a name like my_new_mp3.xls to bypass name restricitions.

What you can do is set up a policy that prohibits storing certain file
types, and then periodically run a script that checks the actual type of
files stored on the shares (with something like the Unix "file" command)
and deletes files that violate the policy.

Regards
Ansgar Wiechers
--
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

---

• References:
  • Restrict certain file types on a Windows 2000 share
    • From: Mary Hendrix
  • Re: Restrict certain file types on a Windows 2000 share
    • From: Ansgar -59cobalt- Wiechers

• Prev by Date: RE: Advice regarding servers and Wiping Drives after testing
• Next by Date: Re: Advice regarding servers and Wiping Drives after testing
• Previous by thread: Re: Restrict certain file types on a Windows 2000 share
• Next by thread: advice on dissertation IT security
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Restrict certain file types on a Windows 2000 share ... storing mp3 or other file types on a shared disc that is supposed to ... be used only to store .doc, .xls and so. ... What you can do is set up a policy that prohibits storing certain file ... "All vulnerabilities deserve a public fear period prior to patches ... (Security-Basics) Re: Locking down a workstation ... There is no policy to disable downloading of specific file types. ... have only read/list/execute to that folder though they still can save files to their ... (microsoft.public.win2000.group_policy) Re: Outlook 2003 Group Policy Issue ... attachment file types. ... I created a new policy to allow for adding addtional ... POLICY "Block access to additional e-mail attachments" ... >> I deployed it on three live boxes. ... (microsoft.public.outlook.general) RE: File Types ... AFAIK, there is no builtin group policy to change file types, unless you set ... Create Custom Administrative Templates in Windows 2000 ... "Michael" wrote: ... (microsoft.public.windows.server.dns) Software Restriction Policy Woes ... Am testing SRP in a W2k domain using group polcies. ... removed them from the Designated File Types, ... disallowed due to software policy restrictions. ... (microsoft.public.windowsxp.security_admin)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > security-basics  > 2007-09