Deepak-
Have you considered using Software Restriction Policy in
whitelist mode?
That is, set the default level to disallowed and then only allow
a specified
pre-approved set of executables?
Darren
-----Original Message-----
From: gptalk-bounce@xxxxxxxxxxxxx
[mailto:gptalk-bounce@xxxxxxxxxxxxx] On
Behalf Of Deepu
Sent: Wednesday, July 23, 2008 7:39 AM
To: gptalk@xxxxxxxxxxxxx
Subject: [gptalk] Office Blockage...
Hi Friends,
I am in a great problem. I would really appreciate if anyone
can
help me at the earliest:
Problem: I want to block some executables like access.exe,
publisher.exe and communicator.exe using group policy.
Now the problem is i can't use Software Restriction Policy
using
hash rule as the hash will change everytime microsoft patches
or
release service pack for office 2007.
Secondly if i use Software Restriction Policy using path rule.
The
user can simply copy the exe to alternate location and can run
the
program with ease.
So,i would really appreciate if anyone can help me to solve
this
issue, as the user can't open the above mentioned exe from
anywhere. I want to implement it using group policy. A custom
ADM/ADMX will also work... Please guide me if possible...
Waiting for your reply...
Deepak Kumar...
India...
***********************
You can unsubscribe from gptalk by sending email to
gptalk-request@xxxxxxxxxxxxx with 'unsubscribe' in the Subject
field OR by
logging into the freelists.org Web interface. Archives for the
list are
available at //www.freelists.org/archives/gptalk/
************************
***********************
You can unsubscribe from gptalk by sending email to
gptalk-request@xxxxxxxxxxxxx with 'unsubscribe' in the Subject
field OR by logging into the freelists.org Web interface.
Archives for the list are available at
//www.freelists.org/archives/gptalk/
************************
