http://www.askvg.com/all-kinds-of-re...003-and-vista/
Not sure if it's correct but:
20.) Restrict Command Prompt:HKEY_CURRENT_USER\Software\Policies\Microsoft\Wind ows\System
Create DWORD value
DisableCMD and set its value to
2
Doh! Command.com, now that is sneaky
12.) Restrict Programs to run:HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre nt Version\Policies\Explorer\DisallowRun
create String value with any name, like
1 and set its value to the program's EXE file.
e.g., If you want to restrict msconfig, then create a String value
1 and set its value to
msconfig.exe. If you want to restrict more programs, then simply create more String values with names
2,
3 and so on and set their values to the program's exe.
Wonder if that restriction can also be applied for command.com ?