My work does this too. But what's to stop someone from just putting mini-linux on a flash-drive, reboot the system, boot up in linux off the flash drive, uninstall/delete this "HACK" (ie modification), and reboot back into XP with everything all fixed and running as normal? If someone really wants to use it, there's no stopping them with this...but at least it'll keep the n00b's busy.
ok there are a lot of different people on digg...and a lot of stuff no one NEEDS to know or hear about, it's interesting. If you don't like it browse to a different story man, that's the whole point...
Maybe this is the wrong place to ask but what I and probably many other people want to know is how do we circumvent this. My PC's USB port is the only way I can charge my iPod during the 8 long hours I spend in the corporate meat grinder. Now if I forget to charge my iPod I'm screwed.I'm friendly with one of the SysAdmins where I work and they've informed me that the auditing method this software uses is synchronous which means that in theory if I unplug my LAN cable I can plug things into my USB port for power. Rather than asynchronous in that it stores some sort of local log that it uploads to the server at a fixed time each day. Can anyone confirm this?
It's interesting, but to remove all USB capability is not the way to go. We have a network with about 300 desktops in our company. To manage them we are using Desktop Authority. This tool has a USB/port security feature, so we can lock the use of portable storage media, pda, fdd, cd, serial/parallel ports and many more. With it's validation logic this can be set to any user or group much more easily than using group policy. Have a look to this tool at: <a class="user" href="http://www.scriptlogic.com/products/DesktopAuthority/">http://www.scriptlogic.com/products/DesktopAuthority/</a>
randomc0deApr 28, 2006
@Nealibob<a class="user" href="http://www.thinkgeek.com/gadgets/electronic/5a05/">http://www.thinkgeek.com/gadgets/electronic/5a05/</a>Looks pretty opaque to me.
skatingroxApr 28, 2006
That/s a PS/2 keylogger. I was under the impression that this article was about USB devices.
keithgabryelskiMay 1, 2006
wouldn't it be simpler to just use a pair of pliers?
tidejweMay 1, 2006
My work does this too. But what's to stop someone from just putting mini-linux on a flash-drive, reboot the system, boot up in linux off the flash drive, uninstall/delete this "HACK" (ie modification), and reboot back into XP with everything all fixed and running as normal? If someone really wants to use it, there's no stopping them with this...but at least it'll keep the n00b's busy.
heeerrresjonnyAug 20, 2006
you can probably disable usb boot if you want in the bios and then set a bios password...not very tricky at all...
heeerrresjonnyAug 20, 2006
ok there are a lot of different people on digg...and a lot of stuff no one NEEDS to know or hear about, it's interesting. If you don't like it browse to a different story man, that's the whole point...
stevechanAug 31, 2006
I would like to recommend Lockdown Plus PC. It can lock down floppy, cd-rom, and removable mass storage like usb sticks easily. With Lockdown Plus PC, you can disable USB sticks or make it read-only without having other usb devices being affected.Unlike solutions by modifying registry settings, protection from this utility is quite robust. It is able to restrict administrators and even works under safe mode.To download, please access <a class="user" href="http://www.y0ys.com/exe/lockpcsetup.zip">http://www.y0ys.com/exe/lockpcsetup.zip</a> . For full features list, please visit <a class="user" href="http://y0ys.com/lockdown/features.htm">http://y0ys.com/lockdown/features.htm</a> .
grid212Oct 16, 2006
Maybe this is the wrong place to ask but what I and probably many other people want to know is how do we circumvent this. My PC's USB port is the only way I can charge my iPod during the 8 long hours I spend in the corporate meat grinder. Now if I forget to charge my iPod I'm screwed.I'm friendly with one of the SysAdmins where I work and they've informed me that the auditing method this software uses is synchronous which means that in theory if I unplug my LAN cable I can plug things into my USB port for power. Rather than asynchronous in that it stores some sort of local log that it uploads to the server at a fixed time each day. Can anyone confirm this?
4milesNov 9, 2006
It's interesting, but to remove all USB capability is not the way to go. We have a network with about 300 desktops in our company. To manage them we are using Desktop Authority. This tool has a USB/port security feature, so we can lock the use of portable storage media, pda, fdd, cd, serial/parallel ports and many more. With it's validation logic this can be set to any user or group much more easily than using group policy. Have a look to this tool at: <a class="user" href="http://www.scriptlogic.com/products/DesktopAuthority/">http://www.scriptlogic.com/products/DesktopAuthority/</a>
seansshackJan 12, 2007
nice one!!!!