Office. Several PCs with Linux. Internet is limited on gateway level, so nobody could do POST-requests over HTTP.
We prepared several measures to prevent data leakage on infrastructure level, but wondering:
Is it possible to prevent attacks like attaching a hardware network device to the PC’s straight by wire to immitate a fake gateway? That way user can avoid all office-wide network restrictions and copy something right on this device.
Storage devices (USB and such) are already disabled.
End goal: prevent data leak by some of our employees.
