Data Loss Prevention News


Network World: "Tie 'em up and lock 'em down"

Tie 'em up and lock 'em down

By Mark Gibbs
Source: Network World

Just think; you have a gazillion PCs, all with some combination of serial, parallel, infrared, Firewire and USB ports. Not to mention 802.11 wireless cards, writable CD drives, floppy disks and hard disks. Think about it; each port and device is a potential major security hole.

Now in your network environment just consider what one of your users with an empty iPod, access to a USB port and bad intentions could get away with . . . chills you to the marrow, doesn't it?

And when you think of it, the whole idea of any I/O devices on PCs being available when they aren't actually needed is pretty dumb. So what's a sysadmin to do?

Well, we just found an interesting answer: DeviceLock from SmartLine. This system, which works under Windows NT, 2000, XP and Server 2003, lets you block unauthorized users from using all the devices we listed above and many other plug-and-play devices.

DeviceLock also lets you control device access by time of day and day of the week, and you can define a whitelist of USB devices that authorizes access to specific devices regardless of any other settings.

Full story at

Related articles:
Understand the risks of USB storage devices
USB and FireWire devices pose security threat
Corporate security: risks of the insiders attack


News archive