How prevent data steal thru pen drives?

Notan
Tue Sep 20 18:25:28 CDT 2005

ATE wrote:

>

Keep pen drive pocket.

Notan

Vanguard
Wed Sep 21 10:32:29 CDT 2005

"ATE" <ATE@discussions.microsoft.com> wrote in message
news:D8B77BA3-9E10-4BB5-921A-925892DA537C@microsoft.com...
>


Is your subject the sum total of your question? You expect detailed replies
with such a vague question, especially when you leave the body blank?

Now, let's see, what type of interface do pen drives use? Might it be USB?
Hmm, so disabling the USB ports in the BIOS (and password protecting the
BIOS) isn't a choice for you?

Notan
Wed Sep 21 10:39:32 CDT 2005

"Vanguard (NPI)" wrote:
>
> "ATE" <ATE@discussions.microsoft.com> wrote in message
> news:D8B77BA3-9E10-4BB5-921A-925892DA537C@microsoft.com...
> >
>
> Is your subject the sum total of your question? You expect detailed replies
> with such a vague question, especially when you leave the body blank?
>
> Now, let's see, what type of interface do pen drives use? Might it be USB?
> Hmm, so disabling the USB ports in the BIOS (and password protecting the
> BIOS) isn't a choice for you?

OP not speak many words. Sound like Tonto, from Lone Ranger.

Notan

Steve
Wed Sep 21 13:07:17 CDT 2005

Or maybe he doesn't speak English as his first language... Give the guy a
break eh?

If this is a USB or Firewire issue, then we can best prevent the problem by
applying epoxy or some sort of physical prevention of the access to the
device via that port. Barring that, there are other methods such as
disabling them in the BIOS (you must still prevent physical access to avoid
resetting the BIOS or otherwise changing the settings) or disabling them in
Windows.

If the issue is all about prevention of data theft, then the physical
security mechanisms are the way to go. Other methods will experience
varying degrees of success/failure depending on the threats levied against
them.





"Notan" <notan@ddress.com> wrote in message
news:43317EB4.AE468ECD@ddress.com...
> "Vanguard (NPI)" wrote:
>>
>> "ATE" <ATE@discussions.microsoft.com> wrote in message
>> news:D8B77BA3-9E10-4BB5-921A-925892DA537C@microsoft.com...
>> >
>>
>> Is your subject the sum total of your question? You expect detailed
>> replies
>> with such a vague question, especially when you leave the body blank?
>>
>> Now, let's see, what type of interface do pen drives use? Might it be
>> USB?
>> Hmm, so disabling the USB ports in the BIOS (and password protecting the
>> BIOS) isn't a choice for you?
>
> OP not speak many words. Sound like Tonto, from Lone Ranger.
>
> Notan

Notan
Wed Sep 21 13:47:11 CDT 2005

"Steve Clark [MSFT]" wrote:
>
> Or maybe he doesn't speak English as his first language... Give the guy a
> break eh?
>
> If this is a USB or Firewire issue, then we can best prevent the problem by
> applying epoxy or some sort of physical prevention of the access to the
> device via that port. Barring that, there are other methods such as
> disabling them in the BIOS (you must still prevent physical access to avoid
> resetting the BIOS or otherwise changing the settings) or disabling them in
> Windows.
>
> If the issue is all about prevention of data theft, then the physical
> security mechanisms are the way to go. Other methods will experience
> varying degrees of success/failure depending on the threats levied against
> them.
>
> <snip>

If English isn't his first language, do you really think he understood a word
that you said? <g>

Notan

Vanguard
Mon Sep 26 14:14:04 CDT 2005

"Notan" <notan@ddress.com> wrote in message
news:4331AAAF.13C0A522@ddress.com...
> "Steve Clark [MSFT]" wrote:
>>
>> Or maybe he doesn't speak English as his first language... Give the guy
>> a
>> break eh?
>>
>> If this is a USB or Firewire issue, then we can best prevent the problem
>> by
>> applying epoxy or some sort of physical prevention of the access to the
>> device via that port. Barring that, there are other methods such as
>> disabling them in the BIOS (you must still prevent physical access to
>> avoid
>> resetting the BIOS or otherwise changing the settings) or disabling them
>> in
>> Windows.
>>
>> If the issue is all about prevention of data theft, then the physical
>> security mechanisms are the way to go. Other methods will experience
>> varying degrees of success/failure depending on the threats levied
>> against
>> them.
>>
>> <snip>
>
> If English isn't his first language, do you really think he understood a
> word
> that you said? <g>


His IP address of 201.243.215.235 shows him in Venezuela (or, more
correctly, coming from a host there). So English is probably NOT his/her
native language. Be he/she asked in English rather than Castilian (Spanish)
so English should be used in replies to be polite to the poster; i.e., the
poster chose the language in which to post, so that is the language expected
for replies. If he can't understand English (enough to read it) then he/she
should've posted in language that he/she does understand.

More likely the poster submitted his/her message with no intent to return to
check on replies. Could be he/she doesn't have the patience to use Usenet
for posting their query and thinks Usenet is a chat room and expects
immediate response. The first reply (mine) was 14 hours after their post.
They probably never came back to look (i.e., more noise in the group).

--
__________________________________________________
E-mail: Remove "NIX" and add "#LAH" to Subject.
__________________________________________________

Notan
Mon Sep 26 19:38:40 CDT 2005

"Vanguard (NPI)" wrote:
>
> "Notan" <notan@ddress.com> wrote in message
> news:4331AAAF.13C0A522@ddress.com...
> > "Steve Clark [MSFT]" wrote:
> >>
> >> Or maybe he doesn't speak English as his first language... Give the guy
> >> a
> >> break eh?
> >>
> >> If this is a USB or Firewire issue, then we can best prevent the problem
> >> by
> >> applying epoxy or some sort of physical prevention of the access to the
> >> device via that port. Barring that, there are other methods such as
> >> disabling them in the BIOS (you must still prevent physical access to
> >> avoid
> >> resetting the BIOS or otherwise changing the settings) or disabling them
> >> in
> >> Windows.
> >>
> >> If the issue is all about prevention of data theft, then the physical
> >> security mechanisms are the way to go. Other methods will experience
> >> varying degrees of success/failure depending on the threats levied
> >> against
> >> them.
> >>
> >> <snip>
> >
> > If English isn't his first language, do you really think he understood a
> > word
> > that you said? <g>
>
> His IP address of 201.243.215.235 shows him in Venezuela (or, more
> correctly, coming from a host there). So English is probably NOT his/her
> native language. Be he/she asked in English rather than Castilian (Spanish)
> so English should be used in replies to be polite to the poster; i.e., the
> poster chose the language in which to post, so that is the language expected
> for replies. If he can't understand English (enough to read it) then he/she
> should've posted in language that he/she does understand.
>
> More likely the poster submitted his/her message with no intent to return to
> check on replies. Could be he/she doesn't have the patience to use Usenet
> for posting their query and thinks Usenet is a chat room and expects
> immediate response. The first reply (mine) was 14 hours after their post.
> They probably never came back to look (i.e., more noise in the group).

One thing that's always impressed me is a poster who'll preface his post
with, "Sorry for the poor English, as it's not my primary language," or
something to that extent. For me, it says a whole lot as to how the post
is written, and should be responded to.

I understand that English is one of the most difficult languages to learn.
Personally, it drive me up the f****** wall, when English speaking people
post with seemingly little, if any, semblance to the English language.
While *everyone* makes occasional mistakes with grammar and typos, the
value of the written word seems to be a thing of the past and, personally,
I miss it.

Notan

Brett
Wed Sep 28 00:48:35 CDT 2005

You may wish to look at the following MS article if you are running Windows
2003

http://support.microsoft.com/?kbid=555324

Alternately you can use the registry to control access to a USB storage
device i.e. disable access to flash (pen drives) etc

refer to the following MS article

http://support.microsoft.com/default.aspx?scid=kb;en-us;823732

If a USB Storage Device Is Already Installed on the Computer
Warning Serious problems might occur if you modify the registry incorrectly
by using Registry Editor or by using another method. These problems might
require that you reinstall your operating system. Microsoft cannot guarantee
that these problems can be solved. Modify the registry at your own risk. If
a USB storage device is already installed on the computer, set the Start
value in the following registry key to 4:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\UsbStor
When you do so, the USB storage device does not work when the user connects
the device to the computer. To set the Start value, follow these steps: 1.
Click Start, and then click Run.
2. In the Open box, type regedit, and then click OK.
3. Locate, and then click the following registry key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\UsbStor
4. In the right pane, double-click Start.
5. In the Value data box, type 4, click Hexadecimal (if it is not
already selected), and then click OK.
6. Quit Registry Editor

Cheers and don't worry about the sarcastic remarks made by one of
participants in this thread, English isn't the only language spoken in the
world.
"ATE" <ATE@discussions.microsoft.com> wrote in message
news:D8B77BA3-9E10-4BB5-921A-925892DA537C@microsoft.com...
>