How to prevent users from saying "yes" to "Are you sure want to open this?" popup?

Posted on 2006-04-27
Last Modified: 2013-12-04
Is there an easy configuration step I can make on a Windows XP machine to prevent it from executing downloaded or emailed files?

Specifically, with SP2 installed the user gets a "This file could contain viruses, are you sure you want to open it?" message. Is there a way to make it so, say, the user would need to enter a password in order to click "Yes"?

Note that it is not possible to run these users on "Limited User" accounts becuase of incompatible applications. I really just want a way to stop them from saying "Yes" to the warning pop-up.


Question by:bigjosh2
    LVL 24

    Accepted Solution

    >  the user would need to enter a password in order to click "Yes"?

    No. That is a different form of program. Your user has already logged in and has autenticated with a password.

    > I really just want a way to stop them from saying "Yes" to the warning pop-up.

    Train them. Ensure corp policy says they are not supposed to do it. Any who subsequently refuse to abide by a corp policy are indicating they do not agree to work for the company any longer

    OTOH, MS is too frequently constrained to having that popup on nearly everything. Nearly all cases I want to run it, it is a word document I want or something similar. The popup itself is annoying enough. To add another level of password to that is certainly not going to win you any more friends at work.

    This is pre-SP2 btw, nothing much new about viruses, except there are fewer being developed and emailed for MS Word anyway.

    If you get a rash of evil attachments, block them at router, server or relay, don' leave them all to each individual.
    LVL 24

    Expert Comment

    An alternative is to either deny them email or deny them any capability to process attachements. There are alternative methods to move files around

    Author Comment

    Sorry, I'm really looking for a technological solution to an admittadly social problem.

    Again, I feel like there must be a way to prevent users from downloading certian file types. I know that in OE you can block users from opening certain file types.

    LVL 23

    Assisted Solution

    hi there

    i hope this link would be helpful as this would let u customize

    LVL 18

    Assisted Solution

    Sunbow: the solution to human error or negligence does not need to be technical. Certainly not for your own people.
    Because when you solve this, they will find other ways to shoot themselves in the foot.

    The solution really is a solid security policy combined with procedures, guidelines and security awareness training.
    Have the policy signed by the users. And make sure it contains appropriate disciplinary actions.
    Of course, before all else and starting a security policy: have management support.
    If your management doesn't support security then forget about it. I'm not kidding.
    Once you have the above, you can start thinking about logical countermeasures. In you case: a good antivirus on the clients and a decent firewall preferably with integrated antivirus, intrusion prevention, etc ...
    Sometimes called: Unified Threat Management. Such a firewall can be configured not to allow certain file types to be downloaded and a lot more then that.

    LVL 38

    Assisted Solution

    by:Rich Rumble
    If you have Exchange, and or Active Directory you can in fact block certain file attachments:
    found using the search:

    Basically the search in google is: terms_to_search_for outlook block attachements "group policy"

    Typically your antivirus solution for Exchange will also allow you to dictate the attachments you can and can't send/recieve. If you don't have AV on the PC's you should at the very leaste have them on the Email server!

    As far as removing Admin rights from users, it's always the best practice to do day-to-day operations as the lowest privileged user possible. Have a look at these pages for some ideas on how you may be able to better protect your users in this way:

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    As I write this article, I am finishing cleanup from the Qakbot virus variant found in the wild on April 18, 2011.  It was a messy beast that had varying levels of infection, speculated as being dependent on how long it resided on the infected syste…
    Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now