Eileen Brown's WebLog : Preventing write operations to USB block storage devices

Nov December 2004 Jan

S M T W T F S
28 29 30 1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31 1
2 3 4 5 6 7 8

Live Communications Server

LCS Home page

LCS Documentation

LCS on TechNet

LCS Bloggers

LCS 2005 Resources

Kintan Brahmbhatt

Exchange

Exchange Home page

Exchange Documentation

Exchange Server team blog

Exchange on TechNet

Exchange Bloggers

Henrik Walther's blog

Microsoft Evangelists

Steve Lamb (UK)

Jeff Alexander (AUS)

Michael Kleef (AUS)

Harold Wong (USA)

Kevin Remde (USA)

Daniel Van Soest (NL)

Tony Krijnen (NL)

Daniel Melanchthon (DE)

Keith Combs (USA)

Melville Thomson (UK)

Steve Horne (UK)

Will Gunaratne (UK)

James O'Neill (UK)

How to....

Subscribe to a Newsreader using RSS

Contact me: +44 7764 359 905

Management Technologies

MOM Documentation

MOM on TechNet

SMS Documentation

SMS on TechNet

SMS Home page

SMS Bloggers

MOM Bloggers

MOM Home page

FAQShop

MyITForum

MOMAnswers

Blogroll

Technorati Profile

Blogs I read...

Mike Platt

John Howard

KC Lemson

Mark Arnold

Nick Gillott

Betsy

PTS-TV

UK User Groups

Messaging and mobility User Group

Sharepoint User Group

Unified Communications and RTC User group

Windows management User group

Office User Group

Preventing write operations to USB block storage devices

My colleague Julius sent this handy tip around on email the other day, and didn't blog about it - so I have! Although it may be more appropriate if you're a security guy, you may find it of use .

Controlling block storage devices on USB buses

What does controlling block storage devices on USB buses do?

This feature provides the ability to set a registry key that will prevent write operations to USB block storage devices, such as memory sticks. When this registry key is enabled, the devices function only as read-only devices. You can implement this setting as part of a security strategy to prevent users from transporting data using these devices.

Who does this feature apply to?

•

Users who do not want data to be written from their computer to a USB storage device.

•

IT professionals who want to implement organization controls over the use of USB block storage devices

What settings are added or changed in Windows XP Service Pack 2

Setting name

Location

Default value

Possible values

WriteProtect

HKEY_LOCAL_MACHINE\System\
CurrentControlSet\Control \StorageDevicePolicies

DWORD=0

0 - Disabled

1 - Enabled

Thanks Julius ...!

Published Friday, December 03, 2004 7:48 PM by Eileen_Brown
Filed Under: General musings, How to Articles, Information

Comments

Monday, December 06, 2004 2:55 PM by paulo

# re: Preventing write operations to USB block storage devices

Hi,

This is realy very value added info!
Is there any chance to do something alike
in w xp sp1?

Many Thx
Best Regards

Monday, December 06, 2004 6:43 PM by Eileen Brown

# re: Preventing write operations to USB block storage devices

I'm sorry - this is a "new" inclusion for XP2, but its such a useful feature that its worth accelerating your deployment of XPSP2! The full paper showing all of the different functionality is here: http://www.microsoft.com/downloads/details.aspx?FamilyID=7bd948d7-b791-40b6-8364-685b84158c78&DisplayLang=en
Thanks for your feedback, it makes me feel that all my blogging efforts are worthwhile!

New Comments to this post are disabled

Eileen Brown's WebLog

This Blog

Syndication

Search

Archives

News

Navigation

Post Categories

Live Communications Server

Exchange

Microsoft Evangelists

How to....

Management Technologies

Blogroll

Blogs I read...

UK User Groups

Preventing write operations to USB block storage devices

Comments

# re: Preventing write operations to USB block storage devices

# re: Preventing write operations to USB block storage devices

•	Users who do not want data to be written from their computer to a USB storage device.
•	IT professionals who want to implement organization controls over the use of USB block storage devices