mirror of
https://github.com/MicrosoftDocs/windows-itpro-docs.git
synced 2025-05-12 13:27:23 +00:00
Update applications-that-can-bypass-appcontrol.md
This commit is contained in:
Vinay Pamnani
GitHub
parent
6f7861ee11
commit
866d47341e
@ -49,7 +49,7 @@ Unless your use scenarios explicitly require them, Microsoft recommends that you
|
|||||||
- texttransform.exe
|
- texttransform.exe
|
||||||
- visualuiaverifynative.exe
|
- visualuiaverifynative.exe
|
||||||
- system.management.automation.dll
|
- system.management.automation.dll
|
||||||
- webclnt.dll/davsvc.dll
|
- webclnt.dll/davsvc.dll<sup>3</sup>
|
||||||
- wfc.exe
|
- wfc.exe
|
||||||
- windbg.exe
|
- windbg.exe
|
||||||
- wmic.exe
|
- wmic.exe
|
||||||
@ -62,6 +62,8 @@ Unless your use scenarios explicitly require them, Microsoft recommends that you
|
|||||||
|
|
||||||
<sup>2</sup> If you're using your reference system in a development context and use msbuild.exe to build managed applications, we recommend that you allow msbuild.exe in your code integrity policies. Otherwise, we recommend that you block msbuild.exe.
|
<sup>2</sup> If you're using your reference system in a development context and use msbuild.exe to build managed applications, we recommend that you allow msbuild.exe in your code integrity policies. Otherwise, we recommend that you block msbuild.exe.
|
||||||
|
|
||||||
|
<sup>3</sup> If you block WebDAV DLL's, we recommend that you also disable the **WebClient** service using a group policy or MDM policies.
|
||||||
|
|
||||||
<sup>*</sup> Microsoft recognizes the efforts of people in the security community who help us protect customers through responsible vulnerability disclosure, and extends thanks to the following people:
|
<sup>*</sup> Microsoft recognizes the efforts of people in the security community who help us protect customers through responsible vulnerability disclosure, and extends thanks to the following people:
|
||||||
|
|
||||||
<br />
|
<br />
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user