The table describes all available values and the default values of all the settings that you can specify for the Device Control task.
|
|
|
Setting
|
Description
|
Values
|
RulesAction
|
Action preformed by Kaspersky Industrial CyberSecurity for Linux Nodes upon an attempt to access a device protected by the access rules.
|
ApplyRules – Kaspersky Industrial CyberSecurity for Linux Nodes applies Application Control rules and performs the action specified in the rules.
TestRules (default value) – Kaspersky Industrial CyberSecurity for Linux Nodes tests the rules, allows access and generates an event about detection of a device that meets the rule.
|
The [DeviceClass] section contains access rules for devices depending on their type.
|
HardDrive
|
Specifies access rules for hard drives connected to a computer.
|
Allow — Users are allowed access to hard drives.
DependsOnBus (default value) — Access to the hard drives depends on the connection bus access rule.
Block — Access to all hard drives (except system hard drives, which are never blocked by the Device Control task) is blocked for users.
ByRule — Access to the hard drives depends on the access rules.
|
RemovableDrive
|
Specifies access rules for removable drives connected to a computer.
|
Allow — Access to the removable drives is allowed for users.
DependsOnBus (default value) — Access to the removable drives depends on the connection bus access rule.
Block — Access to the removable drives is blocked for users.
ByRule — Access to the removable drives depends on the access rules.
|
FloppyDrive
|
Specifies access rules for floppy disks connected to a computer.
The application does not block floppy disks connected to the computer using the ISA bus.
|
Allow — Users are allowed access to floppy disks.
DependsOnBus (default value) — Access to floppy disks depends on the connection bus access rule.
Block — Access to floppy disks is blocked for users.
ByRule — Access to floppy disks depends on the access rules.
|
OpticalDrive
|
Specifies access rules for CD/DVD drives connected to a computer.
|
Allow — Users are allowed access to CD/DVD drives.
DependsOnBus (default value) — Access to CD/DVD drives depends on the connection bus access rule.
Block — Access to CD/DVD drives is blocked for users.
ByRule — Access to CD/DVD drives depends on the access rules.
|
SerialPortDevice
|
Specifies access rules for devices connected to a computer through a serial port.
The application does not block devices connected to a computer via a serial port using the ISA bus.
|
Allow — Users are allowed access to devices connected through a serial port.
DependsOnBus (default value) — Access to devices connected through a serial port depends on the connection bus access rule.
Block — Access to devices connected through a serial port is blocked for users.
|
ParallelPortDevice
|
Specifies access rules for devices connected to a computer through a parallel port.
|
Allow — Users are allowed access to devices connected through a parallel port.
DependsOnBus (default value) — Access to devices connected through a parallel port depends on the connection bus access rule.
Block — Access to devices connected through a parallel port is blocked for users.
|
Printer
|
Specifies access rules for printers connected to a computer.
|
Allow — Users are allowed access to printers.
DependsOnBus (default value) — Access to printers depends on the connection bus access rule.
Block — Access to printers is blocked for users.
|
Modem
|
Specifies access rules for modems connected to a computer.
|
Allow — Users are allowed access to modems.
DependsOnBus (default value) — Access to modems depends on the connection bus access rule.
Block — Access to modems is blocked for users.
|
TapeDrive
|
Specifies access rules for tape devices connected to a computer.
|
Allow — Users are allowed access to tape devices.
DependsOnBus (default value) — Access to tape devices depends on the connection bus access rule.
Block — Access to tape devices is blocked for users.
|
MultifuncDevice
|
Specifies access rules for multifunctional devices connected to a computer.
|
Allow — Users are allowed access to multifunctional devices.
DependsOnBus (default value) — Access to multifunctional devices depends on the connection bus access rule.
Block — Access to multifunctional devices is blocked for users.
|
SmartCardReader
|
Specifies access rules for smart card readers connected to a computer.
|
Allow — Access to smart card readers is allowed for users.
DependsOnBus (default value) — Access to smart card readers depends on the connection bus access rule.
Block — Access to smart card readers is blocked for users.
|
WiFiAdapter
|
Specifies access rules for Wi-Fi adapters connected to the computer.
|
Allow — Users are allowed access to Wi-Fi adapters.
DependsOnBus (default value) — Access to Wi-Fi adapters depends on the connection bus access rule.
Block — Access to the Wi-Fi adapters is blocked for users.
|
NetworkAdapter
|
Specifies access rules for external network adapters connected to a computer.
|
Allow — Users are allowed access to external network adapters.
DependsOnBus (default value) — Access to external network adapters depends on the connection bus access rule.
Device Control does not allow you to deny access to external network adapters to avoid disconnecting your computer from the network.
|
PortableDevice
|
Specifies access rules for portable devices connected to a computer.
|
Allow — Users are allowed access to portable devices.
DependsOnBus (default value) — Access to portable devices depends on the connection bus access rule.
Block — Access to portable devices is blocked for users.
|
BluetoothDevice
|
Specifies access rules for Bluetooth devices connected to a computer.
|
Allow — Users are allowed access to Bluetooth devices.
DependsOnBus (default value) — Access to Bluetooth devices depends on the connection bus access rule.
Block — Access to Bluetooth devices is blocked for users.
|
ImagingDevice
|
Specifies access rules for imaging devices connected to a computer.
|
Allow —Access to all imaging devices is allowed for users.
DependsOnBus (default value) — Access to imaging devices depends on the connection bus access rule.
Block —Access to all imaging devices is blocked for users.
|
SoundAdapter
|
Specifies access rules for sound adapters connected to a computer.
|
Allow —Access to all sound adapters is allowed for users.
DependsOnBus (default value) — Access to sound adapters depends on the connection bus access rule.
Block —Access to all sound adapters is blocked for users.
|
InputDevice
|
Specifies access rules for input devices (keyboards, mouse, touch pad and other) connected to a computer.
|
Allow — Users are allowed access to input devices.
DependsOnBus (default value) — Access to input devices depends on the connection bus access rule.
Block — Access to input devices is blocked for users.
|
The [DeviceBus] section contains connection bus access rules that determine whether the connection of devices is allowed or blocked.
|
USB
|
Specifies connection bus access rules for devices connected to a computer via USB interface.
|
Allow (default value) — Users are allowed access to USB-devices.
Block — Access to USB-devices is blocked for users.
|
FireWire
|
Specifies connection bus access rules for devices connected to a computer via FireWire interface.
|
Allow (default value) — Users are allowed access to devices connected via the FireWire interface.
Block — Access to devices connected via the FireWire interface is blocked for users.
|
The [TrustedDevices.item_#] section contains trusted devices, access to which is not restricted by the rules from the [DeviceClass] and [DeviceBus] sections.
|
ID
|
Specifies ID or ID mask of a trusted device. You can use the following masks to indicate the device ID: * (any sequence of characters) or ? (any character).
|
—
|
Comment
|
Comment to the specified trusted device.
|
—
|
The [Schedules.item_#] section contains the device access schedule. You can configure schedules only for hard drives, removable drives, floppy disks, and CD/DVD drives.
|
ScheduleName
|
Specifies a schedule name.
The Default schedule provides users full access to devices at any time if the connection bus is allowed to access the corresponding device type.
You cannot delete the Default schedule.
|
The default value: Default .
|
DaysHours
|
Specifies time intervals for a schedule.
|
All (default value) — The schedule is valid 24/7 (no time limitation).
< week_day > — Days of the week. You can use either the full week day names or abbreviations (for example, for Monday, you can specify Mo, or Mon, or Monday). For week days, you can specify intervals or specific days. The week starts from Sunday.
< hour > — Hours [0:24]. For hours, you can specify only intervals.
Examples:
Schedule_1 is valid from Sunday till Saturday from 0 a.m. to 11 a.m., from 12 p.m. to 3 p.m., and from 4 p.m. to 12 a.m.:
[Schedules.item_0001]
ScheduleName=schedule_1
DaysHours=Su-Sa:0..11,12..15,16..24
Schedule_2 is valid for the following intervals: on Thursdays from 12 p.m. to 2 p.m. and on Fridays from 2 a.m. to 3 p.m. and from 4 p.m. to 12 a.m.:
[Schedules.item_0002]
ScheduleName=schedule_2
DaysHours=Th:12..14;Fr:2..15,16..24
Schedule_3 is valid 24 hours 7 days a week:
[Schedules.item_0003]
ScheduleName=schedule_3
DaysHours=All
|
|
The [HardDrivePrincipals.item_#] section contains hard drive access rules.
For hard drives, at least one schedule must always be enabled. You can assign several access rules to a hard drive.
Also, multiple schedules can be specified for a user or group of users. If access schedules for a user or group conflict, minimal access rights are granted.
|
Principal
|
Specifies a user or group of users for whom the access rule is applied.
|
\Everyone (default value) — The access rule applies to all users.
< user name > — Name of the user to whom the access rule applies.
@< group name > — Name of the group of users to whom the access rule applies.
|
[HardDrivePrincipals.item_#.AccessRules.item_#]
|
Access rule settings.
|
—
|
UseRule
|
Specifies whether the rule is enabled or disabled.
|
Yes (default value) — The access rule is enabled.
No — The access rule is disabled.
|
ScheduleName
|
Schedule specified in the [Schedules.item_#] section. The access rule is applied only on the days and hours covered by the schedule.
|
The default value: Default .
|
Access
|
Specifies access type.
|
Allow (default value) — Access to hard drives is allowed.
Block — Access to hard drives is blocked.
|
The [RemovableDrivePrincipals.item_#] section contains the access rules for removable drives.
For removable drives, at least one schedule must always be enabled. You can assign several access rules to a removable drive.
Also, multiple schedules can be specified for a user or group of users. If access schedules for a user or group conflict, minimal access rights are granted.
|
Principal
|
Specifies a user or group of users for whom the access rule is applied.
|
\Everyone (default value) — The access rule applies to all users.
< user name > — Name of the user to whom the access rule applies.
@< group name > — Name of the group of users to whom the access rule applies.
|
[RemovableDrivePrincipals.item_#.AccessRules.item_#]
|
Access rule settings.
|
—
|
UseRule
|
Specifies whether the rule is enabled or disabled.
|
Yes (default value) — The access rule is enabled.
No — The access rule is disabled.
|
ScheduleName
|
Schedule specified in the [Schedules.item_#] section. The access rule is applied only on the days and hours covered by the schedule.
|
The default value: Default .
|
The [FloppyDrivePrincipals.item_#] section contains access rules for floppy drives.
For floppy drives, at least one schedule must always be enabled. You can assign several access rules to a floppy drive.
Also, multiple schedules can be specified for a user or group of users. If access schedules for a user or group conflict, minimal access rights are granted.
|
Principal
|
Specifies a user or group of users for whom the access rule is applied.
|
\Everyone (default value) — The access rule applies to all users.
< user name > — Name of the user to whom the access rule applies.
@< group name > — Name of the group of users to whom the access rule applies.
|
[FloppyDrivePrincipals.item_#.AccessRules.item_#]
|
Access rule settings.
|
—
|
UseRule
|
Specifies whether the rule is enabled or disabled.
|
Yes (default value) — The access rule is enabled.
No — The access rule is disabled.
|
ScheduleName
|
Schedule specified in the [Schedules.item_#] section. The access rule is applied only on the days and hours covered by the schedule.
|
The default value: Default .
|
Access
|
Specifies access type.
|
Allow (default value) — Access to floppy drives is allowed.
Block — Access to floppy drives is blocked.
|
The [OpticalDrivePrincipals.item_#] section contains the access rules for CD/DVD drives.
For CD/DVD drives, at least one schedule must always be enabled. You can assign several access rules to a CD/DVD drive.
Also, multiple schedules can be specified for a user or group of users. If access schedules for a user or group conflict, minimal access rights are granted.
|
Principal
|
Specifies a user or group of users for whom the access rule is applied.
|
\Everyone (default value) — The access rule applies to all users.
< user name > — Name of the user to whom the access rule applies.
@< group name > — Name of the group of users to whom the access rule applies.
|
[OpticalDrivePrincipals.item_#.AccessRules.item_#]
|
Access rule settings.
|
—
|
UseRule
|
Specifies whether the rule is enabled or disabled.
|
Yes (default value) — The access rule is enabled.
No — The access rule is disabled.
|
ScheduleName
|
Schedule specified in the [Schedules.item_#] section. The access rule is applied only on the days and hours covered by the schedule.
|
The default value: Default .
|
Access
|
Specifies access type.
|
Allow (default value) — Access to CD/DVD drives is allowed.
Block — Access to CD/DVD drives is blocked.
|