On mySimon: Toothbrush Sanitizer
BNET Business Network:
BNET
TechRepublic
ZDNet

November 15th, 2005

How do you stop Sony's rootkit at the office?

Posted by George Ou @ 10:30 am

Categories: Advice

Tags:

Some colleagues of mine were asking me how to stop CDs from auto-playing which allows something like Sony’s rootkit to install on their computers.  The solution is actually quite simple and effective with Microsoft Active Directory Group Policy.  It’s easy to disable auto-play from every single computer in the Enterprise globally with just a few tweaks in Group Policy and here’s how you do it.  The same technique works for individual PCs as well.

Open up the "Active Directory Users and Computers" console.  Right click on the top of the Active Directory and click "Properties"

Jump to the "Group Policy" tab, highlight "Default Domain Policy", and then click "Edit".

Expand "Computer Configuration" as shown below and click on the "System" folder.  On the right hand pane, double click "Turn off Autoplay".  Note that home users can jump to this screen by typing "gpedit.msc" from their "Start-run" prompt.  If you’re not sure what that means, it’s probably not a good idea to mess with "gpedit.msc".

Choose "Enable" and select "All drives" to turn auto-play off for any device including CD and DVD drives and hit "Apply".

Close everything out and every computer on your domain is protected against auto-play and the Sony rootkit.  Any business or organization that is serious about security should do this immediately.

Ask Bloggie is a joint production by bloggers Dana Blankenhorn, Paul Murphy, George Ou and Jason O'Grady, who need your technology and technology management questions. Please drop them a note either via the talkback section here or by email - to murph@winface.com.

  • Talkback
  • Most Recent of 25 Talkback(s)
Wish I would have bought one of these CDs
Would have been neat to just "innocently" play the music on my school's computers... (Read the rest)
Posted by: Anthony S. Posted on: 01/20/06 You are currently: a Guest | | Terms of Use
Alternative Method.....  JoeMama_z | 11/15/05
Again where credit is due...  ju1ce | 11/15/05
if you wanted....  JoeMama_z | 11/15/05
This is the easiest method  george_ou | 11/15/05
Agreed... Seems relatively simple (NT)  ju1ce | 11/15/05
network guru?  kckn4fun | 11/17/05
He said "by far" a network guru  george_ou | 11/17/05
No kidding.. Some people just can't read I guess.. (NT)  ju1ce | 11/18/05
in your case juice  dguith@... | 11/18/05
Seems like more work than George's suggestion (NT)  ju1ce | 11/15/05
Suggestion for George  kckn4fun | 11/17/05
Easier than that for standalone  george_ou | 11/17/05
Are you certain it works?  brilang | 11/18/05
This will sort of work  joe.brockman@... | 11/18/05
Not for XP Home!  PB_z | 11/18/05
There is more to the Sony thing.  Rocas | 11/18/05
Sony is just a sales gimmick...?  gardoglee | 11/18/05
My office banned all music and video CD's  kraterz | 11/19/05
XP Home Threat and Sol'n  svasutin | 11/19/05
Home Threat and Security Sol'n  svasutin | 11/19/05
Adminstrator Privileges  debater | 11/20/05
Agreed  george_ou | 11/21/05
registry method  terrym0021 | 11/23/05
Rootkit? whats the point of it?!  jesus_of_suburbia344 | 12/06/05
Wish I would have bought one of these CDs  Anthony S. | 01/20/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

Top Rated

    Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
    Reduce risk. Reduce complexity. Increase reliability.
    A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
    Learn more >>
    The best support in the Linux business
    If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
    Learn more >>
    Keep Up With The Latest In Document Management with The DocuMentor.
    Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
    Learn more >>
    Save time with automated shipping solutions
    The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
    Visit the UPS Business Essentials Guide
    Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
    Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
    Learn more about the free, six-month trial offer>>
    The best support in the Linux business
    If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
    Learn more >>
    advertisement

    Archives

    ZDNet Blogs

    White Papers, Webcasts, and Downloads

    SmartPlanet

    Click Here