I am now looking at using Software Restriction Policies to block
executables from running except from standard locations.
Setting a "path rule" to block execution in the Application Data folder, as
follows:
Path: %AppData%\*.exe
Security Level: Disallowed
works in Win XP. However, it does NOT work in Windows 7. (I can run an
executable placed in that folder after setting that policy and restarting
the machine.) Does anyone have any idea how to do this in Windows 7 and
have it actually work?
Ken Dibble
www.stic-cil.org
_______________________________________________
Post Messages to: [email protected]
Subscription Maintenance: http://mail.leafe.com/mailman/listinfo/profox
OT-free version of this list: http://mail.leafe.com/mailman/listinfo/profoxtech
Searchable Archive: http://leafe.com/archives/search/profox
This message:
http://leafe.com/archives/byMID/profox/[email protected]
** All postings, unless explicitly stated otherwise, are the opinions of the
author, and do not constitute legal or medical advice. This statement is added
to the messages for those lawyers who are too stupid to see the obvious.
