Microsoft's Windows
7 (hereafter referred to as Win7) has a qualitative improvement in terms of system security features compared to XP and Vista. In the previous issue, Master Dong introduced the UAC function of Win7, and the current Master Dong will continue to introduce you to a function you may not have discovered ——AppLocker. What can it do? And listen to Master Dong slowly.
With the popularity of computers and the Internet, there are more and more viruses and Trojans, especially some new viruses and Trojans, which often cause harm to users before antivirus software provides effective killing methods. Serious damage, and in the case of more and more important data and information stored in the computer
, computer
security issues are even more important. In Win7, we can use the AppLocker function that comes with the system to further improve the system security, so as not to affect the normal operation of normal, but also effectively prevent the malicious program from running!
Enable AppLocker Don't forget to run the service
First, right click on the computer and select “Manage →Services", find “Application Identity" service and set it to start automatically. This step is very important because AppLocker will only take effect if it is set to autostart.
Then type “gpedit.msc” in the search box in the Start menu to launch the Group Policy Editor. Expand “Computer Configuration →Windows Settings →Security Settings →Application Control Strategy”, you can see a related setting item called Applocker. After selecting this setting item, you can see the “Executable Rules” and “Windows Installer Rules” and “Script Rules” in the right window. You can create a new rule by right-clicking on each rule, and you can create a corresponding action rule according to your needs.
Dong Master Tip: The first time you use AppLocker, you must restart your computer after the configuration is complete to make the policy take effect.
Big knife test Let the flash virus have nothing to do
We usually use flash memory to transfer or share some files. But now the flash virus is very rampant and often causes our system to be repeatedly poisoned. At this point we can use AppLocker to create a corresponding rule to avoid the destruction of the system by the flash virus. One of the key files for flash virus propagation is “AutoRun.inf”, so you only need to disable this file.
First, we select “script rule" in the left window list, then right click on the right window and select "Create new rule" command, then the system will pop up "Create" The window of the script rule & rdquo;. Select “Reject" in the "Actions" window, then select "Everyone" in the "Users or Groups" and click the "Next" button. Then select the “path” option in the window creation criteria, then click “Next”. Then type “?:AutoRun.inf” in the "path" box and continue to click the “Next” button. Since there are no other necessary operations in the back, just click the “Create” button to complete the creation of the rule. Now plug in the flash, it will not be poisoned by the automatic operation of the flash.
Dong Master Tip: According to the above settings, the auto-run function of flash and CD will be disabled. If you only want to disable the auto-run function of flash, just specify the drive letter of the flash. In addition, AppLocker can use the relative path or system variable of a file or folder in addition to the absolute path of the file or folder. For example, “%WINDIR%” represents the location of the OS
directory, and “%TEMP%” represents the current system default temporary directory.
Advanced Application Protection System File Security
The current computer virus is pervasive, even if you are careful. Many viruses use Windows to "over-trust" files in their own directories to run or infect system files, so we can write a rule that prohibits virus executables from running in the system directory. The principle is very simple, you only need to prohibit other program files in the Windows directory except the system executable file.
Also, by creating a new executable rule in the right window. First select “reject" in the "Operation" in the window, select “Everyone" in the "user or group", click the “Next” button, select “ in the window creation conditions. Path & rdquo; option, then enter “%WINDIR%*.exe” in the "path" box, then select “publisher" in the "Exceptions" window and click “Add” Click the “Browse” button in the pop-up window. Feel free to select a Microsoft program file from the pop-up window, then move the slider to the "Publisher" location, and then click the "OK" button in the window to confirm the relevant settings.
At this time, you can see the publisher's information in the "Exceptions" list, and finally click the "Create” button to complete the rule creation.
Dong Master Tip: Since Microsoft has been the exception of the publisher, all the software that comes with the system in the system directory can run normally, and the virus or Trojan even "sneaked into" the system directory. Can not run, of course, can not tamper with the system files, it can not harm the security of the system and users. At the same time, the path or file name in the rule can also use wildcards, which can be easily set for a certain type of file, such as “?:*.exe”, which means any executable file in any directory, “ D:*” means any file under the D drive. However, this operation requires a certain computer foundation, and the novice should be used with caution!
Extending the application Restricting the running of known programs
In addition to the active defense of viruses, AppLocker can also be used to limit the running of known programs.
For example, if you need to restrict your child to run a certain game, you can create rules through AppLocker to prevent the game from running. If the game doesn't need to be installed, then using the “path” to judge, obviously it is impossible to avoid the problem that the child can move the game to another directory, but it doesn't matter, just create a “file hash” type of rule. can. This way, no matter where the game moves, the rule will stop the file as long as it finds that the file hash is the same value.
In addition, some important files are stored in our computer. In order to prevent others from modifying, you can use AppLocker to create rules to protect these files. The method is very simple, just temporarily disable the software program that opens these files.
Win7, use AppLocker to add locks
We can understand through the introduction that AppLocker can protect system files well, so as to avoid damage caused by computer viruses to system files. As long as the system files are intact, even if the virus infects certain applications, it will not affect the normal operation of the system. In this case, you can use the anti-virus software to easily get the virus. how about it? Give it a try!
AppLocker Q & A
Q: What if my main program is not installed in the system directory, but I want to add protection to them? A: It's very simple. Create rules, add your program or program installation directory, and then set the settings as needed in the “Deny & Exceptions” list.
Q: What if some software is not in the allowed directory or not in the exception list? A: It's also very simple. Just right click and run as administrator.
Q: Some software itself needs some file write permission, or will generate new files (such as download), what should I do? A: Give the relevant directories and files “Authenticated Users”; users have full control rights.
董师傅评论
AppLocker is a new feature in Windows 7, and there is no such option in the control panel, so many users don't understand its function, don't even know it. The presence. In fact, the flexible use of AppLocker can effectively manage how users run all types of application files, including executable files, script files, program installation files and dynamic link library files, etc., and can protect system file security well, not afraid of unknown viruses. damage. In addition, the flexibility to use AppLocker's rule combination can also achieve more features. For example, only users with certain permissions are allowed to run a certain program, and only a certain user can run certain files or existing software in a certain directory.
win10 experience version activation function experience is not comprehensive, we can borrow win10 ac
First press Win+R to open the run, enter regsvr32 actxprxy.dll and press Enter to pop up a DllRegist
win10 official version qq has been logged in the lower right corner of the computer taskbar can not
Recently many friends use Win10 system is encountered such a problem: When using third-party securit
What should I do if I can't open the menu message bar after upgrading win10?
Win7 how to cancel the boot login interface
Win7 system and winxp system LAN can not visit each other solutions
Win8.1 failed to install itunes11?
How does Win10 shut down the Windows Update service? Win10 closes the Windows Update service method
Can't install ICBC online banking control or online banking assistant under win10?
Windows 7 uses resource monitor to view hard disk read and write status
Win8.1 failed to upgrade Win10 9879, what should I do if I get an error code?
Win7 system installation font failure how to do
Win10 Consumer Preview opens Cortana in early 2015.
How long can the win10 preview be used? Win10 preview release time
Actual combat: How to upgrade Win8 to Win8.1 preview version
Solve the Win7 computer blue screen code 0x000000001e has a coup
Firefox browser main function setting method
IIS7/iis7.5 pseudo-static plus sign and space error solution
What should I do if the computer freezes while dialing up? How to deal with computer fake death
Win10 can not run Master Lu how to do? Can not run Master Lu solution
Properly set up and use the Windows 7 system power plan
Win7/Win8.1 get Win10 update program to install kb3035583 patch tutorial