If you have linux workstations in your corporate environment you should be addressing the issues regarding data leakage. Below are the steps i have taken to block writing to usb storage devices.
Disabling USB storage devices
Linux uses a module called "usb_storage" to mount external usb storage devices. If you are interested in stopping a user from mounting external usb storage follow the steps below.
- Create a file called "usb_storage.conf" in the /etc/modprobe.d/ directory.
- Open the file and enter "blacklist usb_storage.conf" in the file and then close and save the file.
- Reboot the workstation
- Plug in a USB storage device and you should see that the device does not get auto mounted
Additional Tips
lsmod - shows what modules are currently loaded
modinfo - shows information about module
modprobe -r usb_storage - Can be used to unload the usb_storage module