it would be possible to run a script on logon that
checks the username of the newly logged on user, then
if the user is unauthorized, it takes permissions of a
local administrator by using LogonUserA in
advapi32.dll, then replace \windows\system32\usbd.sys
with a dummy dll.
--- "Nicki Messerschmidt, Linksystem Muenchen GmbH"
<bugtraq (at) alienn (dot) net [email concealed]> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi List,
> I wonderer if it is possible to disable the use of
> USB on a per user
> basis on Windows XP professional.
> I don't know of any method how to do this, but I am
> hoping that anyone
> you knows how to achieve this.
>
>
> Thanks in Advance,
> Nicki Messerschmidt
>
> - --
> Linksystem Muenchen GmbH
> info (at) link-m (dot) de [email concealed]
> Schloerstrasse 10
> http://www.link-m.de
> 80634 Muenchen Tel. 089
> / 890 518-0
> We make the Net work. Fax 089 /
> 890 518-77
> PGP-Key:
> https://www.link-m.de/pgp/n.messerschmidt.asc
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.1 (GNU/Linux)
>
>
iD8DBQE/XLJ76zWc+bXuIEMRAt2mAJ9ybIiTPA9A7VkIjlMu7kQ1LRzFOwCbBbmO
> 1+J7YTZRRJ0Ms0fPBo5muno=
> =KCON
> -----END PGP SIGNATURE-----
>
>
>
------------------------------------------------------------------------
---
> KaVaDo provides the first and only integrated Web
> application scanner and
> firewall security suite that prevent Web
> applications attacks, the most
> common form of online exploitation. Download a FREE
> whitepaper on Security Policy Automation for Web
> Applications.
>
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
>
>
------------------------------------------------------------------------
---
>
__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
checks the username of the newly logged on user, then
if the user is unauthorized, it takes permissions of a
local administrator by using LogonUserA in
advapi32.dll, then replace \windows\system32\usbd.sys
with a dummy dll.
--- "Nicki Messerschmidt, Linksystem Muenchen GmbH"
<bugtraq (at) alienn (dot) net [email concealed]> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi List,
> I wonderer if it is possible to disable the use of
> USB on a per user
> basis on Windows XP professional.
> I don't know of any method how to do this, but I am
> hoping that anyone
> you knows how to achieve this.
>
>
> Thanks in Advance,
> Nicki Messerschmidt
>
> - --
> Linksystem Muenchen GmbH
> info (at) link-m (dot) de [email concealed]
> Schloerstrasse 10
> http://www.link-m.de
> 80634 Muenchen Tel. 089
> / 890 518-0
> We make the Net work. Fax 089 /
> 890 518-77
> PGP-Key:
> https://www.link-m.de/pgp/n.messerschmidt.asc
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.1 (GNU/Linux)
>
>
iD8DBQE/XLJ76zWc+bXuIEMRAt2mAJ9ybIiTPA9A7VkIjlMu7kQ1LRzFOwCbBbmO
> 1+J7YTZRRJ0Ms0fPBo5muno=
> =KCON
> -----END PGP SIGNATURE-----
>
>
>
------------------------------------------------------------------------
---
> KaVaDo provides the first and only integrated Web
> application scanner and
> firewall security suite that prevent Web
> applications attacks, the most
> common form of online exploitation. Download a FREE
> whitepaper on Security Policy Automation for Web
> Applications.
>
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
>
>
------------------------------------------------------------------------
---
>
__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
[ reply ]