I want to black autorun, but I am concern if I block the autorun is there any impact will infect the system?
Most of the cases which i have seen that when ever autorun is enable the usb will autorun when plugin and the virus enter in the system with autorun coding.
If you can stop it and manully open the usb after scanning there is not way to virus to enter in system.
Preventing viruses using "autorun.inf" from spreading with "Application and Device Control" policies in Symantec Endpoint Protection (SEP) 11.x and 12.1.x
Article:TECH104909 |
| |
Created: 2008-01-09 |
| |
Updated: 2011-12-14 |
| |
Article URL http://www.symantec.com/docs/TECH104909 |
How to protect systems with SEP from an autorun.inf that links to malware.
Article:TECH201440 |
| |
Created: 2013-01-08 |
| |
Updated: 2013-01-08 |
| |
Article URL http://www.symantec.com/docs/TECH201440 |
Preventing a virus from using the AutoRun feature to spread itself
Article:TECH104447 |
| |
Created: 2008-01-21 |
| |
Updated: 2013-12-12 |
| |
Article URL http://www.symantec.com/docs/TECH104447 |
Disable from microsoft
http://support.microsoft.com/kb/967715
where I can block through the Symantec endpoint protection or through Group Policy?
Both of the option is good to block the autorun functionality but i am suggest you to do it from symantec for safely applied.
Because from symantec it will applied on all of the system where it be installed and from GP it will fail in some cases.