Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
N
N
number092022-03-05 21:46:41
System administration
number09, 2022-03-05 21:46:41

I'm going to prevent users from running executable files, what are the ways to make exceptions?

I want to prohibit the launch of executable files, starting with a complete ban and then exposing exceptions. From what locations can you immediately allow programs to run?

C:\ProgramData
C:\Program Files
C:\Program Files (x86)

something else to work?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
V
Vasily Bannikov, 2022-03-05
@vabka

Maybe just enter a white list of those programs that can be run, and prohibit everything that is not on the white list pointwise?
There shouldn't be any executables in ProgramData.
What programs your users use for work - only these users know.
So you need to look where they start from there.

Report
R
Roman Bezrukov, 2022-03-06
@NortheR73

Have you looked at Software Restriction Policies ?

Similar questions
V
Vsc2015-02-14 16:35:51
How to learn Computer Science? 1Reply
G
GrimJack2017-02-17 10:46:04
Are there any solutions for dividing a server into "parts"? 2Reply
V
Vitaly2019-07-16 15:50:46
Is it possible to redirect from domain to domain via hosts file in Linux? 3Reply
D
Denis Sechin2017-02-20 13:29:38
Can't connect to ftp server by external ip? 2Reply
D
Digsecman2019-07-19 11:07:30
Ubuntu, NetXMS how to install? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question