How do I stop .scr files from being run on a SBS 2011 server?
A client has terminal services running, so files run on the actual server. I believe that this may be done via GPO. Ideally, I would like a step by step please.
Many thanks.
SBSWindows Server 2008Microsoft Server OSVulnerabilitiesSecurity
Last Comment
McKnife
8/22/2022 - Mon
John
Normally these are Screen saver files. Do they cause you a problem? Or perhaps turn Screen Saver off (black monitor instead).
meduzi
ASKER
Hi John.
No, these .scr files are scripts, the type that often installs Crytolocker etc. I know how to block them via Exchange, but I simply want to stop these running completely.
John
If that is the case on your server, then top grade antivirus should stop Cryptolocker from installing.
Software restriction policies ("SRP") can indeed be used to block .scr files.
Applocker, the successor of SRP, cannot do this, MS has seen no need (no danger?) to block those.
younghv
I've requested that this question be closed as follows:
Accepted answer: 250 points for McKnife's comment #a40985962
Assisted answer: 250 points for thinkpads_user's comment #a40985963
for the following reason:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.