"Additional Rules" in Software restriction policy

Discussion in 'Server Security' started by Mark B, May 28, 2009.

  1. Mark B

    Mark B Guest

    Hi all,

    Is there a way I can add "Hash Rules" to my "Additional Rules/Software
    Restriction Policy without having to use the MMC?

    What I'd envisage is a program (or script) that trawls from a start point
    through every sub-directory (user home drives in this case) looking for .EXE
    files that they shouldn't have, calculating the hash, and adding it to the
    rules list.

    I could see this being run daily or weekly to keep the hash rules current.
    Of course, there would also have to be a way to detect duplicate entries,
    and not add them.

    Mark B, May 28, 2009
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.