In my .NET Rocks interview
, I briefly alluded to Michael Howard
's tool "DropMyRights
" to help users who still run as Administrators (a practice I don't recommend, and neither does Howard, but I know many still do) to drop their privileges when using any tool to access the internet. Now, Howard has written an extension to that first article
detailing the use of "Software Restriction Policies". Take a look at this interesting article
to see how you can use the group policy objects to apply limited rights to an application you do not wish to implicity trust.