Locking devices down

Discussion in 'Security Software' started by Ziguana, May 26, 2005.

  1. Ziguana

    Ziguana Guest

    Can someone give me some advice on how I can lock down XP and all the devices
    like USB, CDROM, Floppy etc on my network, we have grown very quickly and
    there now seems to be alot of people running round with USB sticks and IPODS.
    I know I can lock them down in the registery but I'd like to control this
    centrally, we use USB Mouse etc so I can't just turn them all of. I have
    server 2003 running in a pure XP environment.

    Hopefully someone can tell me whats the standard out there as I'm sure this
    is a common problem now a days! I've heard of device lock and device wall!

    Thanks in advance
     
    Ziguana, May 26, 2005
    #1
    1. Advertisements

  2. Ziguana

    Mark Randall Guest

    Put your towers inside locks cupboards, worked for me :)
     
    Mark Randall, May 26, 2005
    #2
    1. Advertisements

  3. Ziguana

    John Guest

    SafeGuard Advanced Security, the PnP Module.

    See http://www.utimaco.com

    Regards
    John
     
    John, May 26, 2005
    #3
  4. If the machines are in a Domain Group Policy can be used to lock down a few
    things.
     
    Andrew Sword [MVP], May 26, 2005
    #4
  5. This is a big problem. As others advised there are third party programs that
    can be used at extra expense of course. There is no magic Group Policy
    setting though some have tried custom adm templates that they claim work
    well for them. You seem to describe a situation where some discipline is
    needed.

    If you are growing rapidly then it is time to create a computer user policy
    with strict guidelines on what is and is not allowed on YOUR network and
    computers. The policy should be developed with the help of personnel and
    legal departments if you are large enough to have such and get the blessing
    of the higher ups and guarantees that it will be enforced. If no one has the
    will to create or enforce such then you will have to spend the money for the
    third party controls if you want to maintain some level of security on the
    network or consider disabling the USB ports [or epoxy them] in cmos,
    password protect cmos, lock the computer case covers, and use ps2 keyboards
    and mice. The links below may be of interest though I have no idea how well
    they work. --- Steve

    http://www.pragmaticutopia.com/index.php?option=com_content&task=view&id=89&Itemid=2
    http://forums.susserver.com/index.php?showtopic=2067
     
    Steven L Umbach, May 26, 2005
    #5
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.