Open File - Security Warning
I have a mapped drive letter to a file server share where I keep many utility scripts (.cmd files).Whenever I right-click a .cmd file and choose Edit, I'm given an "Open File - Security Warning" dialog.How can I disable this prompt? I'd like everything on this server to be considered as safe as the things on my local drive.
May 13th, 2007 10:58pm
You can use the Group Policy Editor. Google "Open File Security Warning," and take your pick of solutions and workarounds; there are about eight on the 1st page of results.
May 21st, 2007 6:21am
Thanks... but that wasn't really helpful. I spent hours poking at "Open File Security Warning" Google results before posting here; they were all about XPsp2. Adding the server to the Trusted sites zone is NOT SUFFICIENT in Vista; Vista's default security level for Trusted Sites is Medium (sans Protected Mode).I did eventually resort to a brute-force approach to find the problem. After adding the server to Trusted sites, edit Security Settings ("Custom level") for the zone, and Enable "Launching applications and unsafe files." (Or just drop your pants and set security to Low for Trusted sites. They are trusted, aren't they?)
May 22nd, 2007 11:17pm
Its easy....just go to internet options (on internet explorer) -> Security->Intranet->Press the Sites Button and deactivate the first option and activete the other 3. Its worked for me....cheers
June 13th, 2007 2:12pm
I ran into the samething. In my research to fix this,I came accross this article on MSDN blogs. http://blogs.msdn.com/gblock/archive/2006/12/19/tips-steams-zones-vista-and-blocked-files-in-ie.aspx?CommentPosted=true#commentmessage
July 19th, 2007 2:22pm
Hi, The posted 'fix' by Technology Instructor doesn't work for me. Interestingly it did work for a collegue 2 months previous (and is still working for him). On our Vista and Windows Server 2003 that have been recently upgraded to IE7 we have the same issue running one of our apps via a network shortcut. I have researched and tried the above fix with no change. I have considred applying the registry update discussed here http://www.petri.co.il/forums/showthread.php?t=3871but am unsure as to how safe this might be. I have considered implementing this fix http://www.vistaheads.com/forums/microsoft-public-windows-vista-security/16603-how-remove-open-file-security-warning-window.htmlbut am not sure how to implement this across our domain. Am sure a Microsoft member can provide worthwhile information to removing this annoying impass. -Dale
February 13th, 2008 5:41pm
Great info! Worked for me!!! Thank you.
July 21st, 2008 1:33pm
joeship wrote: Great info! Worked for me!!! Thank you. Joeship What worked for you??? There are 4 separate solutions in this thread? Ronnie Vernon Microsoft MVP Windows Desktop Experience
July 22nd, 2008 2:04pm
This solution worked for me! We have a drive mapped to H. I added just simply H and H:\ which redirected to the actual path and it was fine after that. No more security warning. Technology Instructor wrote: How to eliminate the Open File Security Warning from programs accessed from the file server. Open the Control Panel Open Internet Options Click the Security Tab Click on Local Intranet Click on Sties Click Advanced Typethe drive letter of your file server where the application is locatedin the Add this website to this zone box. Click Add Click Close Click OK Close Internet Options by clicking OK Close the Control Panel You should no longer get the Open File Security Warning when you run an application from the file server.
July 30th, 2008 8:03am
The 12-step solution worked for me even when I added the UNC instead of the mapped drive letter. (Windows Vista 32-bit accessing Windows Server 2003 / Windows Home Server)
August 27th, 2008 5:26pm
That worked for me too. WindowsXP sp2. It also fixed some of the generic errors that I was getting in different programs that run from my server. Thanks for sharing.
November 3rd, 2008 9:21am
This solution did not work Windows Server 2003 R2 fully patched running as Terminal Server I mapped a drive and was getting permission error when accessing file. I shut-off windows security and then right clicked file and copy and then copy shortcut to desktop. Application now runs but get OFSW error. Tried above - no luck. I see all the solutions but still nothing working. Ideas?
December 11th, 2008 4:34pm
Thanks for this. Since installing Firefox 3.5 this has been driving me nuts. It also got rid of the "Do you want to move copy files from this zone" msgs when moving or copying files from my network. Thanks.
July 3rd, 2009 6:47pm
Is there a registry change that will perform the 12 step solution?
August 5th, 2009 9:37am
This worked for me...~ go to C:\ProgramData\Microsoft\Windows\Start Menu\~ copy the Programs folder to another location, until needed (ie...New Folder)~ then delete the Programs folder in C:\ProgramData\Microsoft\Windows\Start Menu\~ copy the other Programs folder back into C:\ProgramData\Microsoft\Windows\Start Menu\~ and you're DONE!!!
November 25th, 2009 7:31pm
This worked for me...~ go to C:\ProgramData\Microsoft\Windows\Start Menu\~ copy the Programs folder to another location, until needed (ie...New Folder)~ then delete the Programs folder in C:\ProgramData\Microsoft\Windows\Start Menu\~ copy the other Programs folder back into C:\ProgramData\Microsoft\Windows\Start Menu\~ and you're DONE!!! Worked for me. Very odd bug, hope they fix it in win7 SP1.I'll have to make a batch to do this per logon.
December 7th, 2009 12:27am
How to eliminate the “Open File Security Warning” from programs accessed from the file server. Type the drive letter of your file server where the application is located in the “Add this website to this zone” box. This worked for me. Interestingly when I added m:\ it changed it to the "file://hostname" URL
March 1st, 2010 5:35pm
instead of a letter, i've decided to put the IP of the current computer, since the current computer should always trust its content:127.0.0.1
March 14th, 2010 6:01am
instead of a letter, i've decided to put the IP of the current computer, since the current computer should always trust its content: 127.0.0.1 The loopback IP solution worked for me. I was going nuts! Was getting prompted w/ "these files may harm your computer" every time I tried to move a file on a mapped network drive. Using Windows 7 Enterprise.
April 22nd, 2010 9:28am
so are you saying that what i've done has helped you ?
April 22nd, 2010 12:03pm
I've tried all of these solutions and none work. Vista is so awesome.
June 2nd, 2010 1:14am
I had a look at this page: http://www.1stbyte.com/2007/07/06/open-file-security-warning-on-mapped-drive/ Where they suggest the same solution of adding the UNC paths to the local intranet zone. Also suggests adding .exe to the 'attachement manager' User Configuration -> Admin Templates -> Windows Components -> Attachment Manager -> Inclusion list for moderate file risk types I've added .exe under there after adding the server paths (drive letters and server IPs) to the Local Intranet zone. Seems to work here for XP SP3 under a 2003 SP2 domain.
June 16th, 2010 3:50am
from some reason, this problematic window came back , and what i did before didn't help (adding 127.0.0.1 to the sites...) . i use winXP 32 bit home edition sp3 . Diggory Gray , can you please explain exctly what you offered here?
July 12th, 2010 3:17pm
Finnaly a straight answer thanks dude works great
July 23rd, 2010 3:28pm
How to eliminate the “Open File Security Warning” from programs accessed from the file server. ...(12 steps)... Thank you! Such a simple resolution. Why is it so xxxxxxx hard to find such a simple answer? * Worked for Windows Server 2008 (DataCenter Edition on Amazon-EC2) as well. Voted you up.
August 13th, 2010 1:28pm
Is there a way to do the 12 step solution from a batch, group policy, or some other way to deploy it to 50+ workstations? I am using Win7 SP1 workstations, and server 2008r2
April 18th, 2011 11:14pm
Since all of my users run from a terminal server I have their startup programs listed in a folder redirect that resides on a NAS, not on the server they log in to. Using a Terminal Server Farm with load balancing they always get the same startup folder, desktop, favorites, etc. It took me a while to figure this out because I didn't want my users to have to go through these steps to get rid of the security warning. Also, I have used a GPO to disable their security tab and rights so they wouldn't have been able to add the UNC path to their startup folder even if they wanted to. In order to have the UNC path set when they login I added it to the security->local intranet zone via this setting in a GPO. User Configuration -> Windows Settings -> Internet Explorer Maintenance -> Security -> Security Zones and Content Ratings. Double click on Security Zones and Content Ratings and then click the Modify Settings Button. Click on Local Intranet -> Sites. Uncheck Automatically detect intranet network and then check the Include all network paths (UNCs). Click the Advanced Tab -> add the UNC path to your server where the files reside. Make sure the GPO gets applied to the terminal server and the warning message should go away. *** NOTE *** These settings will not apply to users that log on to computers that have the Internet Explorer Enhanced Security Configuration (ESC) enabled. To create settings for users on computers that have ESC enabled, create a new GPO and edit that GPO on a computer where ESC is enabled.
November 28th, 2011 4:00pm
I actually found an answer that made more sense that anything above and doesn't reduce your security protection, unlike all of the above solutions. Due to a network failure, after starting my computer and attempting to log into my domain account, it appears that Windows will change the permissions on certain items when it thinks that it is under attack. So, Windows changed the permissions on my desktop, but nothing that I could see in the UI. Some, but not all, links on my desktop started to exhibit this issue and it only affected links on my desktop. After doing quite a few searches I came across the following article, which turned me in the correct direction: Fix Start Menu Shortcuts Open File Security Warning in Windows 7 and Windows Vista All I had to do was change the path to my desktop (see below): ICACLS "C:\Users\<username goes here>\Desktop" /Setintegritylevel (OI)(CI)M and everything was back to normal again.Bill Bosacker's Blog @ http://www.openSourceC.org/
December 2nd, 2011 3:17pm
@William, icacls.exe is not available on Windows XP SP3. @reduca To avoid the measly 12-steps, the solution that I used was to add the UNC path of the server to the IE Intranet Zone directly to the registry. For all users: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\myuncpath] "file"=dword:00000001 Where "myuncpath" is actually \\<meta content="text/html; charset=utf-8" http-equiv="content-type" />myuncpath (the UNC path of your CIFS server) without the UNC slashes. If you add this to HKLM it will not show up in the user's <meta content="text/html; charset=utf-8" http-equiv="content-type" />Internet Settings control panel under. If added to HKCU, viewing in Internet Settings control panel under Security tab->Sites->Advanced this entry shows up as 'file://myuncpath' in the list of allowed sites.
March 4th, 2012 8:52pm
I thought XP had icacls predecessor cacls. -- .. -- "Jay Goldberg" wrote in message news:f1e2c113-361b-4d11-a24e-a0ac4137adb0... > @William, icacls.exe is not available on Windows XP SP3. > > @reduca > To avoid the measly 12-steps, the solution that I used was to add the UNC > path of the server to the IE Intranet Zone directly to the registry. > > > For all users: > [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet > Settings\ZoneMap\Domains\myuncpath] > "file"=dword:00000001 > > > Where "myuncpath" is actually \\<meta content="text/html; charset=utf-8" > http-equiv="content-type" />myuncpath (the UNC path of your CIFS server) > without the UNC slashes. > > If you add this to HKLM it will not show up in the user's <meta > content="text/html; charset=utf-8" http-equiv="content-type" />Internet > Settings control panel under. If added to HKCU, viewing in Internet > Settings control panel under Security tab->Sites->Advanced this entry > shows up as 'file://myuncpath' in the list of allowed sites. >
March 5th, 2012 2:25am
Hi, I have the same issue after changing the "favorites" to "all programs". I'm not very good with computers. Can you explain step by step how to fix this? Thx!
April 11th, 2012 10:22pm