+ Post New Thread
Results 1 to 4 of 4
Windows Thread, HOW TO: Quick guide how to block students running EXE`s from Zipped files in Technical; 1) Create a new Group policy in the computer group. 2) Edit the policy and goto: Computer Config/Secuirty Settings/Software Restriction ...
  1. #1

    Join Date
    Aug 2007
    Posts
    827
    Thank Post
    101
    Thanked 65 Times in 47 Posts
    Rep Power
    26

    HOW TO: Quick guide how to block students running EXE`s from Zipped files

    1) Create a new Group policy in the computer group.
    2) Edit the policy and goto: Computer Config/Secuirty Settings/Software Restriction Policies,
    3) right click and select "create new policy"
    4) Leave everything default and click "Additional Rules"
    5) enter: C:\Documents and Settings\%username%\Local Settings as a new rule with "Disallowed" as the security level.

    Gpupdate force and your done

    make sure that you leave the "unrestricted" as default in "security levels" or you will be blocking a whole load of stuff !
    If there is anything i have overlooked please let me know..

    Just also found out that kids are hiding files in the "shadow copies" not sure if these files would show up when scanning for a file type.
    Attached Images Attached Images
    Last edited by burgemaster; 19th March 2008 at 01:01 PM.

  2. Thanks to burgemaster from:

    scorcher89 (19th March 2012)

  3. #2
    azrael78's Avatar
    Join Date
    Sep 2007
    Location
    Devon
    Posts
    383
    Thank Post
    47
    Thanked 37 Times in 33 Posts
    Rep Power
    21
    This works well, there are a few points you might want to be aware of - particularly if you use any kind of compiled scripts.

    By default they extract to the users %TEMP% directory which resides inside the Local Settings folder.

    Typically these include the interpreters (WKIX32.exe and KIX32.exe if you use KIX).

    By disallowing the EXE files here, you then stop these scripts from running.

    So it may be worth including an allow rule for KIX32.exe and WKIX32.exe or whichever interpreter for the scripting language you are using.

  4. Thanks to azrael78 from:

    scorcher89 (19th March 2012)

  5. #3
    scorcher89's Avatar
    Join Date
    Mar 2012
    Location
    Birmingham, UK
    Posts
    7
    Thank Post
    2
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    We too have had bother with Ultra-surf being run from Zip files.

    Will give this a go. Thanks guys.

  6. #4

    Join Date
    Mar 2012
    Posts
    2
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Thanks a lot for this

SHARE:
+ Post New Thread

Similar Threads

  1. A Quick Guide to Thin Client Computing - as promised!
    By Ric_ in forum Thin Client and Virtual Machines
    Replies: 37
    Last Post: 25th July 2010, 10:43 AM
  2. How to block GChat....Just for the students!
    By acrobson in forum General Chat
    Replies: 6
    Last Post: 13th June 2007, 02:10 PM
  3. Setting up ISA 2004 quick help guide please.
    By tosca925 in forum Windows
    Replies: 1
    Last Post: 9th August 2006, 08:46 AM
  4. Block students changing desktops etc
    By speckytecky in forum How do you do....it?
    Replies: 5
    Last Post: 7th July 2006, 12:54 PM
  5. Allow staff to see a website but block students
    By adamyoung in forum How do you do....it?
    Replies: 9
    Last Post: 7th October 2005, 08:58 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •