Windows Vista Forums

Modded permissions on USBSTOR registry key revert to defaults automatically

  1. #1



    Junior Member
    Join Date : Feb 2010
    Posts : 12
    Vista Home premium 32bit
    Local Time: 09:37 AM

    Modded permissions on USBSTOR registry key revert to defaults automatically

    Hi,

    I'm trying to "harden" a notebook's security by preventing un-recognised USB mass storage devices from being installed by restricting "permissions" on the USBSTOR driver service in the registry for System/Administrators/Users to "Deny".

    HKLM\SYSTEM\CurrentControlSet\Services\USBSTOR

    This works fine on Xp for example. However when I do this on a Vista machine and insert a "new" USB device the "Installing new device" notification popup appears, followed by a "Do you want Windows to find the device driver..." type dialogue - if I click yes to this the device installs normally and the permissions for the service in the registry as set back to default.

    This is a single user (administrator) on a notebook running Vista HP SP2.

    Can anyone explain this behaviour and if there's a workaround?

    Cheers

      My System SpecsSystem Spec

  2.   


  3. #2



    Banned
    Join Date : Jun 2009
    United States
    Posts : 591
    Windows Vista Home Premium 32 bit
    Local Time: 02:37 AM
    usa us california

     

    Re: Modded permissions on USBSTOR registry key revert to defaults automatically

      My System SpecsSystem Spec

  4. #3



    Junior Member
    Join Date : Feb 2010
    Posts : 12
    Vista Home premium 32bit
    Local Time: 09:37 AM


      Thread Starter

    Re: Modded permissions on USBSTOR registry key revert to defaults automatically

    Katokato the info at link although interesting didn't help as I tried it and the behaviour was exactly the same as that when I modified UBSTOR permissions in the registry. Although the functionality of setting "Start" to 4 in the USBSTOR registry entry did behave as described.

    However I did a bit of lateral thinking in that the USBSTOR key points to the driver USBSTOR.sys in \Windows\System32\Drivers\ so I tried modding the permissions here, although it wouldn't allow this. Going into Advanced options I saw the "Owner" was "Trusted installer" so I changed this "Administrators" and set all permissions to "Deny", re-booted and hey presto any new drives fail to install whereas previously installed drives still work - these can be uninstalled manually if access is to be denied in the future.

    I'm guessing the ownership issue was causing the previously observed behaviour (although I didn't get an error changing the permissions in the registry).

    Anyway thanks for the link, I thought I'd never get an answer but between us I got there!

    Thanks

      My System SpecsSystem Spec


Modded permissions on USBSTOR registry key revert to defaults automatically
Similar Threads
Thread Forum
Cannot revert (change back) folder permissions settings Vista account administration
Cannot revert (change back) folder permissions settings Vista networking & sharing
Details View Column Width Defaults (Registry ??) Vista General
Details View Column Width Defaults (Registry ??) Vista file management
Details View Column Width Defaults (Registry ??) Vista installation & setup