Security Basics mailing list archives

Re: USB Security

From: Dave Aronson <spamtrap.secfocus () dja mailme org>
Date: Mon, 22 Nov 2004 17:21:04 -0500

"Marios Papaioannou" <m.papaioannou () cytanet com cy> wrote:

From my point of view, the only 100% secure way to reduce the risk of
usb is to disable the usb ports from bios.


...AND disable BIOS modification -- such as by using a tough password, 
not telling the user of course, and welding/padlocking the case shut so 
he can't just short the "Reset BIOS" jumpers, and even THEN the padlock 
could be picked or the weld chiseled out, but I think that's enough....

-- 
David J. Aronson
Work: http://destined.to/program
Play: http://listen.to/davearonson

Current thread:

RE: USB Security Gray, Steve (Nov 19)
- Re: USB Security Gaspar de Elías (Nov 22)
- RE: USB Security Marios Papaioannou (Nov 22)
  - Re: USB Security Dave Aronson (Nov 22)
- Re: USB Security GuidoZ (Nov 22)
- RE: USB Security D. Weiss (Nov 22)
- <Possible follow-ups>
- RE: USB Security Beauford, Jason (Nov 22)
  - Re: USB Security Jimi Thompson (Nov 23)
    - Re: USB Security GuidoZ (Nov 24)
- Re: USB Security ttate (Nov 23)
- RE: USB Security Keller, Tim (Nov 26)