<!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Windows 7 - SRP Exclusion question - Windows - Spiceworks Community</title> <meta name="description" content="Hello Spiceworks Community, I am new to Spiceworks community and this is my first post/question. If I fail to follow a standard practice when posting, please feel free to correct me In light of the recent “Crypto” vir&amp;hellip;"> <meta name="generator" content="Discourse 3.4.0.beta3-dev - https://github.com/discourse/discourse version 8210c4c6494dfe80b134d248980f3cc372296035"> <link rel="icon" type="image/png" href="https://global.discourse-cdn.com/spiceworks/optimized/1X/a254df83358a951c43ed6ee756b5e0011a8d58bc_2_32x32.png"> <link rel="apple-touch-icon" type="image/png" href="https://global.discourse-cdn.com/spiceworks/optimized/1X/7a73606d7df2f794c4789897e49693fb3c471b23_2_180x180.png"> <meta name="theme-color" media="(prefers-color-scheme: light)" content="#ffffff"> <meta name="theme-color" media="(prefers-color-scheme: dark)" content="#080809"> <meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1.0, user-scalable=yes, viewport-fit=cover"> <link rel="canonical" href="https://community.spiceworks.com/t/windows-7-srp-exclusion-question/297724" /> <link rel="search" type="application/opensearchdescription+xml" href="https://community.spiceworks.com/opensearch.xml" title="Spiceworks Community Search"> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/color_definitions_spiceworks-light_9_30_fbbac6b14d7bfd3904205db01e91f13a47854748.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" class="light-scheme"/><link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/color_definitions_dark_1_30_14e077de2b45a6017f1f096087d1236aa9ae46e8.css?__ws=community.spiceworks.com" media="(prefers-color-scheme: dark)" rel="stylesheet" class="dark-scheme"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/automation_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="automation" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/chat_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="chat" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/checklist_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="checklist" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-ai_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-ai" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-akismet_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-akismet" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-bbcode_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-bbcode" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-cakeday_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-cakeday" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-calendar_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-calendar" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-data-explorer_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-data-explorer" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-details_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-details" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-follow_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-follow" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-gamification_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-gamification" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-lazy-videos_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-lazy-videos" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-livestream_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-livestream" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-local-dates_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-local-dates" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-narrative-bot_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-narrative-bot" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-presence_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-presence" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-rss-polling_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-rss-polling" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-saved-searches_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-saved-searches" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-solved_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-solved" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-spiceworks-ads_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-spiceworks-ads" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-templates_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-templates" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-user-notes_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-user-notes" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/footnote_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="footnote" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/hosted-site_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="hosted-site" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/poll_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="poll" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/spoiler-alert_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="spoiler-alert" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/chat_desktop_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="chat_desktop" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-ai_desktop_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-ai_desktop" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-calendar_desktop_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-calendar_desktop" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-gamification_desktop_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-gamification_desktop" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/discourse-livestream_desktop_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="discourse-livestream_desktop" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/poll_desktop_adea2d1ba8e75f390b51ebcebb4ebbf1e72d75d7.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="poll_desktop" /> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_24_cfddc80970ae01f2758c5d4ed42fe5756761adf5.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="24" data-theme-name="category headers theme component"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_35_04855c075a92c4357222dd7f04b59ba65c75f095.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="35" data-theme-name="category icons"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_29_1586fb170d6a2363385d3d22194f8fe215383abc.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="29" data-theme-name="custom spiceworks"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_7_9a0e75da6740cd9a2efd29af139e3d386c9beaff.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="7" data-theme-name="dropdown header - spiceworks edition"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_25_2c2ee49468f76ad9c4fe355ae185c512ae0616d8.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="25" data-theme-name="featured posts"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_37_2b621f73f6f52d75a260c58fc6981c6fe28454c6.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="37" data-theme-name="follow category button"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_33_a6fd813d6dabed78af76e80c3772321dd6b9d893.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="33" data-theme-name="guest gate theme component"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_27_618e7daf193c95987f029283d6aaf0269dc54bcc.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="27" data-theme-name="spiceworks footer"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_32_6024842603dd5f3bbef707659400bbdc3b5dd965.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="32" data-theme-name="sw daily challenge"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_26_4187ecb93e8dd127fd2ed44ab14d47b20bc6e10c.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="26" data-theme-name="sw discourse profile page custom links"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_21_d7e2be3df8ce066ecee22dc4753ae225673e8ab8.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="21" data-theme-name="sw promotions"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_28_cb5fd0428d2a1de557b41d8a220be6e66f2d9b96.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="28" data-theme-name="sw user title and color for user groups"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_23_5a01b74e31354af307bfb081083549a906116c11.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="23" data-theme-name="sw-right-sidebar"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_20_4f336d5e8ba26367c620f3029a7c1be82d1b0154.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="20" data-theme-name="tag banners"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_34_ea5faa7a23b861fad25b63b572402bef93945f3b.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="34" data-theme-name="tag icons"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_30_33b127ddb8f56eecc3c48f3861295750ad1fdb79.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="30" data-theme-name="spiceworks (production)"/> <link href="https://sea3.discourse-cdn.com/spiceworks/stylesheets/desktop_theme_39_3157d503bdea44fa4402d27d8fe1b4f939fbaa38.css?__ws=community.spiceworks.com" media="all" rel="stylesheet" data-target="desktop_theme" data-theme-id="39" data-theme-name="livestream-ads"/> <!-- Google Tag Manager --> <!-- End Google Tag Manager --> <link rel="preload" href="https://cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js" as="script"><script defer="" src="https://sea3.discourse-cdn.com/spiceworks/theme-javascripts/5056370bc31bf58348723fbcbb56f3c7b8b1123e.js?__ws=community.spiceworks.com" data-theme-id="29" nonce="WacDKLE74zNBt2LbADZkQq5gc"></script> <script defer="" src="https://sea3.discourse-cdn.com/spiceworks/theme-javascripts/96bd4879f7e2a5d38864677369649e8128ecea7c.js?__ws=community.spiceworks.com" data-theme-id="38" nonce="WacDKLE74zNBt2LbADZkQq5gc"></script> <link rel="alternate nofollow" type="application/rss+xml" title="RSS feed of &#39;Windows 7 - SRP Exclusion question&#39;" href="https://community.spiceworks.com/t/windows-7-srp-exclusion-question/297724.rss" /> <meta property="og:site_name" content="Spiceworks Community" /> <meta property="og:type" content="website" /> <meta name="twitter:card" content="summary" /> <meta name="twitter:image" content="https://global.discourse-cdn.com/spiceworks/original/1X/7a73606d7df2f794c4789897e49693fb3c471b23.png" /> <meta property="og:image" content="https://global.discourse-cdn.com/spiceworks/original/1X/7a73606d7df2f794c4789897e49693fb3c471b23.png" /> <meta property="og:url" content="https://community.spiceworks.com/t/windows-7-srp-exclusion-question/297724" /> <meta name="twitter:url" content="https://community.spiceworks.com/t/windows-7-srp-exclusion-question/297724" /> <meta property="og:title" content="Windows 7 - SRP Exclusion question" /> <meta name="twitter:title" content="Windows 7 - SRP Exclusion question" /> <meta property="og:description" content="Hello Spiceworks Community, I am new to Spiceworks community and this is my first post/question. If I fail to follow a standard practice when posting, please feel free to correct me In light of the recent “Crypto” virus variants, our firm has implemented an SRP. We use all Windows 7 clients and I deployed SRP on Windows 2008 R2 GPO. One of my Disallowed paths is to completely disallow the entire %localappdata% path and subsequently I have whitelisted some applications where necessary. My qu..." /> <meta name="twitter:description" content="Hello Spiceworks Community, I am new to Spiceworks community and this is my first post/question. If I fail to follow a standard practice when posting, please feel free to correct me In light of the recent “Crypto” virus variants, our firm has implemented an SRP. We use all Windows 7 clients and I deployed SRP on Windows 2008 R2 GPO. One of my Disallowed paths is to completely disallow the entire %localappdata% path and subsequently I have whitelisted some applications where necessary. My qu..." /> <meta property="og:article:section" content="Windows" /> <meta property="og:article:section:color" content="0088CC" /> <meta property="og:article:tag" content="windows-server" /> <meta property="og:article:tag" content="discussion" /> <meta name="twitter:label1" value="Reading time" /> <meta name="twitter:data1" value="1 mins 🕑" /> <meta name="twitter:label2" value="Spice ups" /> <meta name="twitter:data2" value="5 ❤" /> <meta property="article:published_time" content="2014-04-24T15:44:50+00:00" /> <meta property="og:ignore_canonical" content="true" /> <script type="application/ld+json">[{"@context":"http://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"item":"https://community.spiceworks.com/c/windows/41","name":"Windows"},{"@type":"ListItem","position":2,"item":"https://community.spiceworks.com/tag/discussion","name":"discussion"},{"@type":"ListItem","position":3,"item":"https://community.spiceworks.com/t/windows-7-srp-exclusion-question/297724","name":"Windows 7 - SRP Exclusion question"}]},{"@context":"http://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"item":"https://community.spiceworks.com/c/windows/41","name":"Windows"},{"@type":"ListItem","position":2,"item":"https://community.spiceworks.com/tag/windows-server","name":"windows-server"},{"@type":"ListItem","position":3,"item":"https://community.spiceworks.com/t/windows-7-srp-exclusion-question/297724","name":"Windows 7 - SRP Exclusion question"}]}]</script> </head> <body class="crawler browser-update"> <script defer="" src="https://sea3.discourse-cdn.com/spiceworks/theme-javascripts/01223c6d02b16adad7d31f26ce4c503435f7656e.js?__ws=community.spiceworks.com" data-theme-id="24" nonce="WacDKLE74zNBt2LbADZkQq5gc"></script> <header> <a href="/"> Spiceworks Community </a> </header> <div id="main-outlet" class="wrap" role="main"> <div id="topic-title"> <h1> <a href="/t/windows-7-srp-exclusion-question/297724">Windows 7 - SRP Exclusion question</a> </h1> <div class="topic-category" itemscope itemtype="http://schema.org/BreadcrumbList"> <span itemprop="itemListElement" itemscope itemtype="http://schema.org/ListItem"> <a href="/c/windows/41" class="badge-wrapper bullet" itemprop="item"> <span class='badge-category-bg' style='background-color: #0088CC'></span> <span class='badge-category clear-badge'> <span class='category-name' itemprop='name'>Windows</span> </span> </a> <meta itemprop="position" content="1" /> </span> </div> <div class="topic-category"> <div class='discourse-tags list-tags'> <a href='https://community.spiceworks.com/tag/windows-server' class='discourse-tag' rel="tag">windows-server</a>, <a href='https://community.spiceworks.com/tag/discussion' class='discourse-tag' rel="tag">discussion</a> </div> </div> </div> <div itemscope itemtype='http://schema.org/DiscussionForumPosting'> <meta itemprop='headline' content='Windows 7 - SRP Exclusion question'> <link itemprop='url' href='https://community.spiceworks.com/t/windows-7-srp-exclusion-question/297724'> <meta itemprop='datePublished' content='2014-04-24T15:44:50Z'> <meta itemprop='articleSection' content='Windows'> <meta itemprop='keywords' content='windows-server, discussion'> <div itemprop='publisher' itemscope itemtype="http://schema.org/Organization"> <meta itemprop='name' content='Spiceworks Inc.'> <div itemprop='logo' itemscope itemtype="http://schema.org/ImageObject"> <meta itemprop='url' content='https://global.discourse-cdn.com/spiceworks/original/4X/a/6/b/a6bdb5fb57f6080b918e219f9f8f79bfbbefa176.svg'> </div> </div> <div id='post_1' class='topic-body crawler-post'> <div class='crawler-post-meta'> <span class="creator" itemprop="author" itemscope itemtype="http://schema.org/Person"> <a itemprop="url" href='https://community.spiceworks.com/u/fabiocarvalho2'><span itemprop='name'>fabiocarvalho2</span></a> (fabiocarvalho2) </span> <link itemprop="mainEntityOfPage" href="https://community.spiceworks.com/t/windows-7-srp-exclusion-question/297724"> <span class="crawler-post-infos"> <time datetime='2014-04-24T15:44:50Z' class='post-time'> April 24, 2014, 3:44pm </time> <meta itemprop='dateModified' content='2014-04-24T15:44:50Z'> <span itemprop='position'>1</span> </span> </div> <div class='post' itemprop='text'> <p>Hello Spiceworks Community,</p> <p>I am new to Spiceworks community and this is my first post/question. If I fail to follow a standard practice when posting, please feel free to correct me</p> <hr> <p>In light of the recent “Crypto” virus variants, our firm has implemented an SRP. We use all Windows 7 clients and I deployed SRP on Windows 2008 R2 GPO.</p> <p>One of my Disallowed paths is to completely disallow the entire %localappdata% path and subsequently I have whitelisted some applications where necessary.</p> <p>My question is, there are some applications, like Malwarebytes that, even though you download the installation EXE to a different folder, when installing it extracts some “.tmp” files to the %temp% folder which get blocked (according to Win 7 Event log). Would there be any security concerns with just completely whitelisting any TMP file in the %temp% folder?</p> <p>Also, I don’t understand why TMP files would get blocked in the first place since that is not one of the file extensions that is blocked by default per the GPO.</p> <p>If anyone has any experience to share, I’m all ears. Thank you.</p> </div> <div itemprop="interactionStatistic" itemscope itemtype="http://schema.org/InteractionCounter"> <meta itemprop="interactionType" content="http://schema.org/LikeAction"/> <meta itemprop="userInteractionCount" content="5" /> <span class='post-likes'>5 Spice ups</span> </div> </div> <div id='post_2' itemprop='comment' itemscope itemtype='http://schema.org/Comment' class='topic-body crawler-post'> <div class='crawler-post-meta'> <span class="creator" itemprop="author" itemscope itemtype="http://schema.org/Person"> <a itemprop="url" href='https://community.spiceworks.com/u/cernig'><span itemprop='name'>cernig</span></a> (Gregg C) </span> <span class="crawler-post-infos"> <time itemprop='datePublished' datetime='2014-04-24T16:13:26Z' class='post-time'> April 24, 2014, 4:13pm </time> <meta itemprop='dateModified' content='2014-04-24T16:13:26Z'> <span itemprop='position'>2</span> </span> </div> <div class='post' itemprop='text'> <p>where you running the installer with elevated rights, or user rights?</p> </div> <div itemprop="interactionStatistic" itemscope itemtype="http://schema.org/InteractionCounter"> <meta itemprop="interactionType" content="http://schema.org/LikeAction"/> <meta itemprop="userInteractionCount" content="0" /> <span class='post-likes'></span> </div> </div> <div id='post_3' itemprop='comment' itemscope itemtype='http://schema.org/Comment' class='topic-body crawler-post'> <div class='crawler-post-meta'> <span class="creator" itemprop="author" itemscope itemtype="http://schema.org/Person"> <a itemprop="url" href='https://community.spiceworks.com/u/fabiocarvalho2'><span itemprop='name'>fabiocarvalho2</span></a> (fabiocarvalho2) </span> <span class="crawler-post-infos"> <time itemprop='datePublished' datetime='2014-04-24T16:26:30Z' class='post-time'> April 24, 2014, 4:26pm </time> <meta itemprop='dateModified' content='2014-04-24T16:26:30Z'> <span itemprop='position'>3</span> </span> </div> <div class='post' itemprop='text'> <p>Hi Gregg,</p> <p>I tried with both sets of rights. I did set the GPO to block All users by default. I was figuring that I didn’t want anything executing from appdata or temp folders.</p> <p>I don’t mind creating whitelist rules as issues arise, it’s just that there are some installation programs (like Malwarebytes, LogMeIn, etc) that are not consistent in the naming of the subfolders and files they extract to %temp% and it drives me nuts. The only consistency is that the files getting blocked have a TMP file extension.</p> <p>If I whitelist all .TMP files in the %TEMP% folder, then it works, Malwarebytes will install. The question is, is there a security concern with allowing TMP files?</p> </div> <div itemprop="interactionStatistic" itemscope itemtype="http://schema.org/InteractionCounter"> <meta itemprop="interactionType" content="http://schema.org/LikeAction"/> <meta itemprop="userInteractionCount" content="0" /> <span class='post-likes'></span> </div> </div> <div id='post_4' itemprop='comment' itemscope itemtype='http://schema.org/Comment' class='topic-body crawler-post'> <div class='crawler-post-meta'> <span class="creator" itemprop="author" itemscope itemtype="http://schema.org/Person"> <a itemprop="url" href='https://community.spiceworks.com/u/fabiocarvalho2'><span itemprop='name'>fabiocarvalho2</span></a> (fabiocarvalho2) </span> <span class="crawler-post-infos"> <time itemprop='datePublished' datetime='2014-05-12T13:48:01Z' class='post-time'> May 12, 2014, 1:48pm </time> <meta itemprop='dateModified' content='2014-05-12T13:48:01Z'> <span itemprop='position'>4</span> </span> </div> <div class='post' itemprop='text'> <p>Well, I have been allowing the TMP files for a couple weeks now and I don’t see any security issues thus far.</p> <p>If anyone has additional insight, please let me know otherwise I suppose we can close this thread.</p> <p>Thanks,</p> </div> <div itemprop="interactionStatistic" itemscope itemtype="http://schema.org/InteractionCounter"> <meta itemprop="interactionType" content="http://schema.org/LikeAction"/> <meta itemprop="userInteractionCount" content="0" /> <span class='post-likes'></span> </div> </div> </div> <div id="related-topics" class="more-topics__list " role="complementary" aria-labelledby="related-topics-title"> <h3 id="related-topics-title" class="more-topics__list-title"> Related topics </h3> <div class="topic-list-container" itemscope itemtype='http://schema.org/ItemList'> <meta itemprop='itemListOrder' content='http://schema.org/ItemListOrderDescending'> <table class='topic-list'> <thead> <tr> <th>Topic</th> <th></th> <th class="replies">Replies</th> <th class="views">Views</th> <th>Activity</th> </tr> </thead> <tbody> <tr class="topic-list-item" id="topic-list-item-440930"> <td class="main-link" itemprop='itemListElement' itemscope itemtype='http://schema.org/ListItem'> <meta itemprop='position' content='1'> <span class="link-top-line"> <a itemprop='url' href='https://community.spiceworks.com/t/software-restriction-policies-randomly-generated-tmp-directories/440930' class='title raw-link raw-topic-link'>Software Restriction Policies &amp; Randomly Generated TMP directories</a> </span> <div class="link-bottom-line"> <a href='/c/windows/41' class='badge-wrapper bullet'> <span class='badge-category-bg' style='background-color: #0088CC'></span> <span class='badge-category clear-badge'> <span class='category-name'>Windows</span> </span> </a> <div class="discourse-tags"> <a href='https://community.spiceworks.com/tag/active-directory-gpo' class='discourse-tag'>active-directory-gpo</a> ,&nbsp; <a href='https://community.spiceworks.com/tag/question' class='discourse-tag'>question</a> </div> </div> </td> <td class="replies"> <span class='posts' title='posts'>6</span> </td> <td class="views"> <span class='views' title='views'>216</span> </td> <td> October 5, 2015 </td> </tr> <tr class="topic-list-item" id="topic-list-item-455196"> <td class="main-link" itemprop='itemListElement' itemscope itemtype='http://schema.org/ListItem'> <meta itemprop='position' content='2'> <span class="link-top-line"> <a itemprop='url' href='https://community.spiceworks.com/t/is-my-srp-working/455196' class='title raw-link raw-topic-link'>Is my SRP working!?</a> </span> <div class="link-bottom-line"> <a href='/c/security/28' class='badge-wrapper bullet'> <span class='badge-category-bg' style='background-color: #0088CC'></span> <span class='badge-category clear-badge'> <span class='category-name'>Security</span> </span> </a> <div class="discourse-tags"> <a href='https://community.spiceworks.com/tag/discussion' class='discourse-tag'>discussion</a> ,&nbsp; <a href='https://community.spiceworks.com/tag/active-directory-gpo' class='discourse-tag'>active-directory-gpo</a> ,&nbsp; <a href='https://community.spiceworks.com/tag/general-it-security' class='discourse-tag'>general-it-security</a> </div> </div> </td> <td class="replies"> <span class='posts' title='posts'>4</span> </td> <td class="views"> <span class='views' title='views'>44</span> </td> <td> December 2, 2015 </td> </tr> <tr class="topic-list-item" id="topic-list-item-255662"> <td class="main-link" itemprop='itemListElement' itemscope itemtype='http://schema.org/ListItem'> <meta itemprop='position' content='3'> <span class="link-top-line"> <a itemprop='url' href='https://community.spiceworks.com/t/software-restriction-policy-whitelist-info-lets-talk/255662' class='title raw-link raw-topic-link'>Software Restriction Policy Whitelist Info - let&#39;s talk.</a> </span> <div class="link-bottom-line"> <a href='/c/windows/41' class='badge-wrapper bullet'> <span class='badge-category-bg' style='background-color: #0088CC'></span> <span class='badge-category clear-badge'> <span class='category-name'>Windows</span> </span> </a> <div class="discourse-tags"> <a href='https://community.spiceworks.com/tag/discussion' class='discourse-tag'>discussion</a> ,&nbsp; <a href='https://community.spiceworks.com/tag/active-directory-gpo' class='discourse-tag'>active-directory-gpo</a> </div> </div> </td> <td class="replies"> <span class='posts' title='posts'>17</span> </td> <td class="views"> <span class='views' title='views'>173</span> </td> <td> December 2, 2013 </td> </tr> <tr class="topic-list-item" id="topic-list-item-709992"> <td class="main-link" itemprop='itemListElement' itemscope itemtype='http://schema.org/ListItem'> <meta itemprop='position' content='4'> <span class="link-top-line"> <a itemprop='url' href='https://community.spiceworks.com/t/assistance-with-srp-whitelisting/709992' class='title raw-link raw-topic-link'>Assistance with SRP Whitelisting</a> </span> <div class="link-bottom-line"> <a href='/c/windows/41' class='badge-wrapper bullet'> <span class='badge-category-bg' style='background-color: #0088CC'></span> <span class='badge-category clear-badge'> <span class='category-name'>Windows</span> </span> </a> <div class="discourse-tags"> <a href='https://community.spiceworks.com/tag/active-directory-gpo' class='discourse-tag'>active-directory-gpo</a> ,&nbsp; <a href='https://community.spiceworks.com/tag/question' class='discourse-tag'>question</a> </div> </div> </td> <td class="replies"> <span class='posts' title='posts'>9</span> </td> <td class="views"> <span class='views' title='views'>129</span> </td> <td> May 2, 2019 </td> </tr> <tr class="topic-list-item" id="topic-list-item-633353"> <td class="main-link" itemprop='itemListElement' itemscope itemtype='http://schema.org/ListItem'> <meta itemprop='position' content='5'> <span class="link-top-line"> <a itemprop='url' href='https://community.spiceworks.com/t/software-restriction-policy-blocking-dpinst64-exe/633353' class='title raw-link raw-topic-link'>Software Restriction Policy blocking DPInst64.exe</a> </span> <div class="link-bottom-line"> <a href='/c/security/28' class='badge-wrapper bullet'> <span class='badge-category-bg' style='background-color: #0088CC'></span> <span class='badge-category clear-badge'> <span class='category-name'>Security</span> </span> </a> <div class="discourse-tags"> <a href='https://community.spiceworks.com/tag/general-it-security' class='discourse-tag'>general-it-security</a> ,&nbsp; <a href='https://community.spiceworks.com/tag/windows-7' class='discourse-tag'>windows-7</a> ,&nbsp; <a href='https://community.spiceworks.com/tag/question' class='discourse-tag'>question</a> </div> </div> </td> <td class="replies"> <span class='posts' title='posts'>4</span> </td> <td class="views"> <span class='views' title='views'>291</span> </td> <td> February 7, 2018 </td> </tr> </tbody> </table> </div> </div> </div> <footer class="container wrap"> <nav class='crawler-nav'> <ul> <li itemscope itemtype='http://schema.org/SiteNavigationElement'> <span itemprop='name'> <a href='/' itemprop="url">Home </a> </span> </li> <li itemscope itemtype='http://schema.org/SiteNavigationElement'> <span itemprop='name'> <a href='/categories' itemprop="url">Categories </a> </span> </li> <li itemscope itemtype='http://schema.org/SiteNavigationElement'> <span itemprop='name'> <a href='/guidelines' itemprop="url">Guidelines </a> </span> </li> <li itemscope itemtype='http://schema.org/SiteNavigationElement'> <span itemprop='name'> <a href='https://www.spiceworks.com/terms' itemprop="url">Terms of Service </a> </span> </li> <li itemscope itemtype='http://schema.org/SiteNavigationElement'> <span itemprop='name'> <a href='https://www.spiceworks.com/privacy' itemprop="url">Privacy Policy </a> </span> </li> </ul> </nav> <p class='powered-by-link'>Powered by <a href="https://www.discourse.org">Discourse</a>, best viewed with JavaScript enabled</p> </footer> <noscript> <img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=6488140&amp;fmt=gif"> </noscript> <script defer="" src="https://sea3.discourse-cdn.com/spiceworks/theme-javascripts/b488d0bc271fc4584be7d0599ed4675117022f39.js?__ws=community.spiceworks.com" data-theme-id="27" nonce="WacDKLE74zNBt2LbADZkQq5gc"></script> <!-- Google Tag Manager (noscript) --> <noscript> <iframe src="https://www.googletagmanager.com/ns.html?id=GTM-KTKRL68F" height="0" width="0" style="display:none;visibility:hidden"></iframe> </noscript> <!-- End Google Tag Manager (noscript) --> <noscript><img height="1" width="1" src="//zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ/" alt=""></noscript> <div class="buorg"><div>Unfortunately, <a href="https://www.discourse.org/faq/#browser">your browser is unsupported</a>. Please <a href="https://browsehappy.com">switch to a supported browser</a> to view rich content, log in and reply.</div></div> <script>(function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'8e76e092995f4a11',t:'MTczMjQyNDg2NS4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();</script></body> </html>