Bingo. That's the ticket right there. After checking more into why %homepath%\*.zip\*.exe was working, it turns out that it wasn't.
I already have an SRP that prevents .exe files from running from %Temp%\*.zip\*.exe and that's where Windows extracts the exe to before trying to run it. On Thu, Jun 5, 2014 at 11:13 AM, Melvin Backus <[email protected]> wrote: > Userprofile includes the drive, homepath doesn’t. > > > > -- > There are 10 kinds of people in the world... > those who understand binary and those who don't. > > > > *From:* [email protected] [mailto: > [email protected]] *On Behalf Of *Richard Stovall > *Sent:* Thursday, June 05, 2014 10:50 AM > > *To:* [email protected] > *Subject:* [NTSysADM] Quick SRP question > > > > Any idea why the following path rules work: > > > > %homepath%\*.zip\*.exe > > %userprofile%\downloads\*.exe > > > > And this one doesn't? > > > > %homepath%\downloads\*.exe > > > > > > ---- > > > > I can accomplish what I'm trying to do, but I don't understand why the > last one allows .exe files to run from the user's downloads folder. >
