I'm very interested in this bit of group policy, but havn't been able to find out too many specifics. How secure is this policy in practise? Is it easily dupped if someone tries to make one program appear to be another? Limitations on which programs can be placed in the 'allow' list? I know it's a short question, but it's straight forward. Thank you so much, -Aaron

If we talk about Windows Firewall then here is 2 conceptions:1) add program. When you add a program, then Windows calculate a hash for it and determine file path. Therefore if after this you move your program to another location, or program is modified (updated or infected by virus), this program will not apply for this rule and you will to have create another rule for particular program. However, you loose a prot restriction ability, bacause program exception allows to program listen any port.2) add TCP/UDP port. When you add particular port, youallow access only to specified port, regardless of the program that listens this port.[http://www.sysadmins.lv] As always enjoy the automation of tools within the Windows-based, .NET aware, WPF accessible, multi-processes on the same IP / Port usage, admin's automation tool, powershell.exe! Flowering Weeds