Bad boy Warrior Posted August 19, 2005 Share Posted August 19, 2005 Hello everyoneCan someone tell me what would be the best settings that i could use to configure a GPO so that it would be save to surf the web? the type i have in mind is where no programs are installed unless its an administrator logged onthx Link to comment Share on other sites More sharing options...
InTheWayBoy Posted August 19, 2005 Share Posted August 19, 2005 Well that would be more along the lines of user rights than GPO...if you setup the users to only have limited access then they won't be able to install anything on any computer they logon as. There maybe some GPO's that help, but from what I've been learning it's not the way to go for that result. Link to comment Share on other sites More sharing options...
chilifrei64 Posted August 19, 2005 Share Posted August 19, 2005 InTheWayBoy in right.. you can do as much as you want with GPO but if the user has administrative privleges, stuff will still get installed. Within GPO you can do stuff like put permissions on the filesystem and registry keys, even disable windows installer, but... .... if the user has administrative privleges, this can and will be circumvented. Link to comment Share on other sites More sharing options...
jpatto Posted August 22, 2005 Share Posted August 22, 2005 (edited) From what i know usually if you block the usual file types (.exe, msi, .vbs etc tec) that is securable as the user cannot install anything unless they have admin privledges and other file extensions can be blocked out too. But not to sure about spy/mal ware in this instance as thats normally an issue when browing websites (if you needed to know that is ) Edited August 22, 2005 by jpatto Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now