I work in a fairly large school and have recently implemented a Software Restriction Policy for students so that they can no longer run things from their My Documents folders and pen drives (exes, cmd, bat files, etc).
This worked great until someone realised that if the exe file is zipped they can just double click on it, run it without extracting the whole zip file, and it works.
Is there any way of stopping this from happening other than blocking all zip files from running (which I can’t really justify doing)?
Students are running lots of rubbish again and it’s doing my head in. I’m fed up with people having sheep screensavers all over their desktop… help!