Software Restriction Policy Whitelist
I've looked at several posts on software restriction policy whitelists but I can't seem to find anyone that has listed the settings for creating a successfull XP whitelist. Anyone care to do so?
I've also read some conflictions information about banninf exe's on USB drives, some people say that you need to ban *.exe at every folder level as it doesn't include subfolders but MS say this:
How Software Restriction Policies Work: Group Policy
A path rule can specify a folder or fully qualified path to a program. When a path rule specifies a folder, it matches any program contained in that folder and any programs contained in subfolders. Software restriction policies support local and Uniform Naming Convention (UNC) paths.