Disable Autorun on Windows

Posted September 28, 2007
Filed under: Security, Windows | Tags: |

This is one security problem that everyone should know. To define in short, by the word itself, it automatically launch application when CD, USB Drive or any devices inserted on the computer. Trojan drops files on a drive especially the autorun.inf which points to an executable file that will be run everytime the drive will be browse.

In a corporate environment, administrators can enforce this feature thru Group policy. More details on Steve Riley’s blog:

In Windows Vista/Server 2008, go here:

Computer Configuration | Administrative Templates | Windows Components | AutoPlay Policies

Enable the “Default behavior for AutoRun” policy and set the default to “Do not execute any autorun commands.”

Enable the “Turn off Autoplay” policy and set it to “All drives.”

In Windows XP/Server 2003, go here:

Computer Configuration | Administrative Templates | System

Enable the “Turn off Autoplay” policy and set it to “All drives.”

2 comments so far

  1. Webcast: Network Hacking in a day « MPonteres’ Blog on October 18, 2007

    [...] MS Windows computer. After hearing this, I am very eager to share and advise to implement and disable autorun on all organizations due to the effect that it may have on a networked [...]

  2. Autorun (Memory Stick Worms) « MPonteres’ Blog on November 6, 2007

    [...] (Memory Stick Worms) Posted November 6, 2007 Have previously post Disabling Autorun on Windows. And found additional information, especially on USB Drives. Have read on Steve Riley’s blog [...]


Leave a reply

You must be logged in to post a comment.