Not sure if anyone can help with this but here goes.
Currently our security is very tight at the school and its really frustrating the students
They have found really the only way they can play games reliably is to run them from a USB key and they all seem to be running .SWF (Flash Files) from them.
The problem we have is the IT teacher here teaches flash to the students.
So I cant just block .SWF files.
I thought maybe I could log in to the drive letter of the USB drive
i.e \\nameofpc\d\games but obviously because there is no share it wont work.
anyone have any idea`s ?
Don't think XP sets up administrative shares on removable devices by default?
I hate this one, we have the same issue with kids playing gameboy emulators from memory sticks pest's!
Hmm I think you may have problems if you are thinking of deleteing content off their memory sticks. You probably cant do this from a legal point of view unless there is something in your AUP about being able to do it
Last edited by JJonas; 15th December 2008 at 02:26 PM.
For emulators etc which run from .exe, install USBDLM, set a drive letter for sticks then install TrustNoExe - don't think it will help with .swf though..
Something we're experimenting with is Software restriction with this.
Add SWF to the exception list and whitelist their user areas but not their pen drives.
Or as we're doing, grab a copy of the game and do a hash restriction.
Another way around this is to have all available letters directed to folders on the network drives.
F:\ = \\Server\%username%\
H:\ = \\Server\%username%\English
I:\ = \\Server\%username%\Maths
J:\ = \\Server\%username%\Science
That would work and give you the chance to have them pointing to useful drives rather than USB drives.
if you made swf files only executable from user folders and not pen drives, they could just copy the files over from the pen drive to the user folder.
i see the simplest solution in just preventing the machines from automounting usb keys.
furthermore, if you try accessing the drives over the network the pupils can just use read-only mediums so you cant delete their stuff.
and they could also just plug the ethernet cable out before starting the game.
i still say that setting up the drives to point somewhere so that all letters are taken is the best option OR disabling the USB functionality completely on pupil profiles. Otherwise you would be there for ages trying to sort out which programs and flash files are good to use.
If you block flash, programs like maths whizz will not be able to work, so blocking flash is not a good idea!
Does using an SRP work on .swf ? I remember trying it with MP3s and even if you add it as an executable type it just ignored it unless its an exe, DLL, script etc.
Just an idea and if it's viable someone could cobble up a script.
If Flash is being taught then each swf file should have a corresponding flv file. Could a script check that an flv file of the same name is present, if so allow the swf if not then block?
You may also have to check modified dates between the two files within a set parameter.
Is it possible?
doing that would be pretty hard to impliment as you would have to make sure that there was a corresponding FLV file, plus the children could just make a file and name it example.flv and have a game called example.swf and you would be screwed
There are currently 1 users browsing this thread. (0 members and 1 guests)