cancel
Showing results for 
Search instead for 
Did you mean: 

Device Control rule - Block USB if infected (Is this possible)

Hi All,

I am rather new to device control and I have a customer who would like to block USB devices if they are infected with a virus.

We are using Device control 9.2 and its running via ePO 4.5

Thanks in advance...

Regards

Darren

2 Replies
Reliable Contributor SafeBoot
Reliable Contributor
Report Inappropriate Content
Message 2 of 3

Re: Device Control rule - Block USB if infected (Is this possible)

No, this is not possible - DLP would have to scan every file on the device prior to making a decision whether to block it or not - this could take minutes/hours depending on the capacity.

By which time the user will have either given up and called support to ask why their device was not working, or infected their machine.

Highlighted

Re: Device Control rule - Block USB if infected (Is this possible)

Well, you could do something funky using results coming back from on access scanner.

Something along the line of if malware is found apply a tag to the machine, then you could assign a policy based on a tag, this policy could be to block all removable media.

Not sure how fast it would all work, sounds good in theory, not sure in practice.

Think you would have to use ePO 4.6 as well, cant remember if you can assign policies based on tags in 4.5

Message was edited by: challiwag on 20/08/12 10:48:36 CDT
More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community