I think the primary point of all this is: - it doesn't matter what you do as long as the user is able to act as a local administrator. if they're at all diligent in their self-destruction efforts, 3rd-party software can only delay the inevitable and waste your time & $$.
I realize that *many* software packages require admin rights to function, but given the same effort required to "stop the admin", you can frequently use the same time to find a viable workaround for these (cr)apps. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rocky Sent: Tuesday, February 27, 2007 3:43 AM To: Richard Medina Cc: [email protected]; Gregory N Pendergast/AC/VCU; [EMAIL PROTECTED] Subject: Re: Prevent users/admin from installing softwares. Thank you all for replying. Actually this is for my client with a small network that requires not to install anything from the client station.They are frequently infected by worm/Trojan viruses because most of them had admin rights. A limited user accounts can also install a softwares by changing the directory location like C:\. So if there's no way to restrict this on registry/gpedit would just recommend to get a 3rd party software. Thanks again. Rocky All mail to and from this domain is GFI-scanned.
