Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 221
  • Last Modified:

Executble acess on a blocked machine

Hi ,

i need to block on a windows 7 machine all usb & media devices ,
and creat an exeption for a specific executable to run from a DiskOnKey device.
is there any way using GPO on this scenario ?
or any other way of getting the job done from the OS.


Thanks,
0
yeroslav
Asked:
yeroslav
1 Solution
 
David Johnson, CD, MVPOwnerCommented:
blocking is done at the device level. perhaps if you have the pci_env value for the device you may be able to allow it. The problem is that the DISKONKEY device is simply a USB drive and if you allow read/execution from a USB drive then ANY software on a Diskonkey drive will work. Can you not run this software from the network?
0
 
btanExec ConsultantCommented:
Possibly block specific vendor and product id and can check out this article belwo using usbdeview to surface more specific device info to help blocking or allowing. On top of that I was also thinking of applocker to allow execution of specific exe either through publisher or signature hash. ..

http://www.irongeek.com/i.php?page=security/plug-and-prey-malicious-usb-devices
0
 
yeroslavAuthor Commented:
Thanks.
0

Featured Post

NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now