Check: 3.004
Windows XP STIG:
3.004
(in versions v6 r1.32 through v1 r0)
Title
Secure Removable Media – CD-ROM (Cat III impact)
Discussion
This check verifies that Windows is configured to not limit access to CD drives when a user is logged on locally per the FDCC.
Check Content
Analyze the system using the Security Configuration and Analysis snap-in. Expand the Security Configuration and Analysis tree view. Navigate to Local Policies -> Security Options. If the value for “Devices: Restrict CD-ROM access to locally logged-on user only” is not set to “Disabled”, then this is a finding. The policy referenced configures the following registry value: Registry Hive: HKEY_LOCAL_MACHINE Subkey: \Software\Microsoft\Windows NT\CurrentVersion\Winlogon\ Value Name: AllocateCDRoms Value Type: REG_SZ Value: 0
Fix Text
Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “Devices: Restrict CD-ROM access to locally logged-on user only” to “Disabled”.
Additional Identifiers
Rule ID: SV-18427r1_rule
Vulnerability ID: V-17373
Group Title: Secure Removable Media – CD-ROM
Expert Comments
CCIs
Number | Definition |
---|---|
No CCIs are assigned to this check |
Controls
Number | Title |
---|---|
No controls are assigned to this check |