Originally Posted by Strat79
1: Open up your Gpedit.msc.
2: Navigate to "User Configuration/Administrative Templates/System"
3: Find the setting toward the bottom that reads "Don't Run Specified Windows Applications" and double click it.
4: Check the "Enabled" circle and hit Apply.
5: Click "Show" and start adding applications into to boxes. I just had to put "iexplore.exe" without the quotes and hit ok then apply.(This blocks both 32 and 64 bit)
6: Ok and Apply and it should work. I just tested.
You may have to adds paths to some files, I'm not sure. I know IE worked by just putting the filename. I will try firefox now to test if paths are needed on some.Edit:
No paths needed, just the filename+extension, one app per box. I added iexplore.exe, firefox.exe and prime95.exe just to test. They all worked. It can be finicky when you try to remove one, so it's best to just disable it, hit apply again and it will remove all, then you can go back enable and add what you want again.Edit2:
Like someone said above, you can remove IE in Win7 from the Programs and Features part of the control panel, but it will not remove the ability for someone to type in an address into an explorer.exe(while in say, My Computer) address box and it acts just like Iexplore then. Doing the Group Policy method makes it so when someone types in an address through that way, it will pop up your default browser instead.
Thank you Big Reps to you
simple clean easy, and it works well to prevent Malware
yes, besides bad users, and lazy coders, the #1 use of IE is to facilitate malware, spyware, rootkit, and everything bad, as the #1 entry point to windows (linux doesn't have this problem), regardless of how great is your firewall, or anitivirus program running, you can't train users regardless of what people say, they will always click or accept what they shouldn't as they can't tell the difference if it's real or not.Edited by AllGamer - 8/16/13 at 2:12pm