usb live OS on work laptop?

reardoma · Dec 13, 2017

Just curious if anyone else has a neat solution to this issue.

have a work laptop that should only be used for work purposes.

routinely travel and don't like bringing two laptops or work laptop + tablet

Has anyone ever used say a USB drive with a live OS on it, booting into this OS when they needed to do personal non-work related things, then unplug and boot up the regular OS when on the clock?

Would this technique be obvious to IT somehow (other than a USB drive was plugged into the PC at one point)?

USAFRet · Dec 13, 2017

reardoma :

If your company policies deny this, and your IT dept has a teeny bit of clue...yes, they can tell.

Talk to your supervisor.
If s/he says no, then do not do this.

Rocky Bennett · Dec 13, 2017

I would say that this is a bad idea because any little thing that happens and you could be fired or held criminally and financially responsible.

reardoma · Dec 13, 2017

Thanks, but i'm a bit curious about the specifics... and not because i'm seriously considering it, BUT,

What methods/tools are used to see my activity via the USB drive?

I of course know it's simple to determine if a USB drive has been inserted (which is fine by company policies), so what would the next step IT would take to see more than this, if i'm booting right into the OS on the USB and say ... surfing the web to set my fantasy lineup?

USAFRet · Dec 13, 2017

reardoma :

Given the correct GPO setting, they can audit exactly what is on that USB as you connect it.

Ask your boss.
If your company has no problem with it, then no prob. Otherwise...how fond are you of a regular paycheck?

Where I work, the first instance is a talking to by your boss and remedial classes in "Don't do that".
Second time is a one on one with the local CEO.
Third time is immediate firing.

USAFRet · Dec 13, 2017

Also, why do you need to use a whole different OS?

reardoma · Dec 13, 2017

USAFRet :

First of all this is a theoretical exercise i know many of my employees face. I'm a PhD, and "the supervisor."

I'm more curious about the specifics of detection, not the moral/ethical aspect.

Why would I need to run a different OS? well i suppose i wouldn't need to if i could find a portable version of windows that would fit on a usb key. I am simply used to a portable OS such as PenOS, so that was what came to mind first. Plus the "work only" requirement.

reardoma · Dec 13, 2017

USAFRet :

Jesus, calm down here. I am asking about the technical side, not your company's policy. Let's get back to the useful portion of your answer... the GPO... so the GPO would kick in before windows was loaded? To confirm, booting into say a portable Ubuntu USB drive from the BIOS would still trigger the GPO? That's interesting to me, could you show me where to learn more about when the GPO "kicks in" during the boot process? I had no idea this was possible if i didn't boot into the OS the GPO was setup in/to address.

reardoma · Dec 13, 2017

Rocky Bennett :

Looking for technical details, not advice on whether to carry out the action or not. See my responses below.

USAFRet · Dec 13, 2017

As said..with the correct GPO, the USB contents can be audited as it is plugged in.

If company policies allow, no harm no foul.
Otherwise...not good.

Now...if you're booting from a power off situation, the installed Windows OS can't detect.
But if that capability was disallowed, then they wouldn't let you boot from a random USB anyway.

reardoma · Dec 13, 2017

USAFRet :

Now we are getting somewhere. so relevant scenarios....

1) If the usb drive is plugged in when the company's OS is running w/ the GPO configured "adequately" to query and report the contents of any plugged in drive, my theory would not be possible.

2) If the usb drive is plugged in when the computer is on OR off, but the company has disabled usb booting in the bios, my theory would not be possible if the GPO was "adequately" configured. (i assume any IT company can disable this in the bios but if i'm wrong let me know)

So....
3) if the usb drive is plugged in when the computer is off, AND the company has not/could not disable usb booting from the bios, would they ever know (more than say that a usb drive was inserted) my activity if i booted from a shutdown state straight to whatever OS on the usb?

USAFRet · Dec 13, 2017

# 3 might work. But also, that concept may fail if the USB OS writes anything to the internal HDD.

As always, it comes down to company policy.

As far as the BIOS and booting...absolutely. My work laptop is blocked from booting from a USB in the BIOS settings, and I simply do not have the BIOS password to change that.

reardoma · Dec 13, 2017

USAFRet :

gracias, i would assume if they are bright enough to get the correct GPO setup, they are probably wise enough to disable usb booting.... if not, i'll make sure they do in the future. cheers.

Search

usb live OS on work laptop?

reardoma

Distinguished

USAFRet

USAFRet

Titan

Rocky Bennett

Dignified

reardoma

Distinguished

USAFRet

Titan

USAFRet

Titan

reardoma

Distinguished

reardoma

Distinguished

reardoma

Distinguished

USAFRet

Titan

reardoma

Distinguished

USAFRet

Titan

reardoma

Distinguished

TRENDING THREADS

Latest posts

Moderators online

Share this page