In the Windows 2000/XP operating system "Start → attachment", there is a "command prompt" menu command, but have you ever noticed that it will also become a security risk for the system?
After entering the command prompt environment, you can run some commands to view your privacy or steal files, such as accessing a hidden partition. Some viruses or hacker programs intrude through the "command prompt", because the corresponding interface does not appear during the running, but is only a flash, so it is easy to be ignored by users. In this case, a better way to eliminate this security risk is to disable unauthorized users from using command prompts. The general method is to modify the registry or install third-party tool software for this purpose, but for most friends, it seems a little difficult. Is there a simpler way?
1. delete command prompt
This is the easiest way. Find the "menu" from "Start> attachment", right-click the menu, and select "delete. However, you can still find/Windows/system32/cmd.exe in the resource manager to run it manually, so you can only scare cainiao friends.
2. Stop the Command run.
In the Group Policy Editor, choose user configuration> management template> system. You can find a policy named "block access command prompt" on the right, select "enabled" in the window shown in figure 1 to enable this policy. This prevents you from running a command prompt. when you attempt to enter the window, the system displays the prompt shown in figure 2, haha, is it cool?
If you select "yes" in the "Also disable command prompt Script Processing?" drop-down list box, you can also disable batch processing files from running on the system, in this way, the call to the command prompt of the batch file can be completely prohibited.