[senathon]

When doing a new install buy using "RunOnceEx.cmd" I keep getting the "Open File - Secuirty Warning" and have to click run to install the programs.


Any Suggestions? I have done a search for this question, but have not found it yet.

[bmusgrove]

I have a similar problem trying to install the .Net 2.0 and Windows installer 3.1 redistributable. The message occurs if the files are located on a server share or on the local harddrive.

An interesting twist...... If I run it at t12 from cmdlines.txt (using Batch.cmd), it works great. Same command line and switches.

If I run it from a batch file after windows starts, it works great. It only gives the warning when running using the RUNONCEEX method

[MGadAllah]

me too, any solve will be great to know

[Bilou_Gateux]

The Open File - Security Warning dialog box is displayed when you try to silently install...

sample batch

@echo off
setlocal enableextensions
setlocal enabledelayedexpansion
call :__preinit

::##############################
::#
::# settings: here are some settings that might need to be set up before using this for the first time
::#
::# set 
set name=SEE_MASK_NOZONECHECKS
set value=1
::#
::# settings end
::#
::##############################

pushd %BIN_Dir%
::# make sure all external utilities are accessible
call :__checkExtUtils
if "%INST_ABORT%" == "1" exit /b 1
setenv -m !name! !value!
popd

@echo Installing the K-Lite Mega Codec Pack
@klmcodec153.exe /verysilent /LoadInf=".\klmcp.ini"
@echo Done!
goto :eof

::##############################
::#
::# functions
::#

:__preinit
set INST_Dir=%~dp0
set INST_Dir=%INST_Dir:~0,-1%
set BIN_Dir=%~d0\bin
goto :eof

:__checkExtUtils
::# make sure external utils are accessible and throw an error if not
::# http://barnyard.syr.edu/~vefatica/
::# view/modify NT's "master" USER and MACHINE environments at command line
setenv -u Temp >nul 2>&1 || goto __checkExtUtilsError
goto :eof

:__checkExtUtilsError
echo Some of the external utilities are not accessible.
echo Make sure you extracted the archive correctly and confirm
echo that the utilities are in bin directory under root
set INST_ABORT=1
goto :eof

::#
::# functions end
::#
::##############################

This post has been edited by Bilou_Gateux: 24 September 2006 - 11:04 AM

[ironside]

Add:

/noexecute=alwaysoff

To your boot.ini

http://www.microsoft.com/technet/prodtechn...n/sp2mempr.mspx

Have a nice day!

[MGadAllah]

does there is any way to disable it completly
or can I ad any entry to winnt.sif to let it be disabled for any new coming application will be installed in future?
Thanks

[MGadAllah]

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerDownload]
"CheckExeSignatures"="no"
"RunInvalidSignatures"=dword:00000001
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesAttachments]
"SaveZoneInformation"=dword:00000001
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesAssociations]
"LowRiskFileTypes"=".zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov
;.mp3;.m3u;.wav;"

Thanks for Kelsenellenelvian

This post has been edited by mgadallah: 25 September 2006 - 12:04 AM

[evils]

I know its a old thread but with the new ie7 we got the same problem ... the only way to fix the problem is by this method

In IE7 click on Tools in the menubar

Then click on the Internet Options

Click on the Security Tab

Then click on Local Intranet and then click on the "sites" button

Then ensure that the "Automatically detect local Intranet" option is unticked and the problem is solved.



but there is a way to auto uncheck this option ? by registry or whatever silently to remove these warning...

[Sonic]

Restore default Intranet Security Zone but disable security for Intranet, silent command line :

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1" /v "Flags" /t REG_DWORD /d 219 /f

Restore default Intranet Security Zone with enable security for Intranet, silent command line (Default IE7 installatio) :

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1" /v "Flags" /t REG_DWORD /d 475 /f

[evils]

Thanks Sonic it seem to work Finally i can remove these warning.

[mokarrabin]

Sonic, on Jan 18 2007, 06:03 AM, said:

Restore default Intranet Security Zone but disable security for Intranet, silent command line :

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1" /v "Flags" /t REG_DWORD /d 219 /f

Restore default Intranet Security Zone with enable security for Intranet, silent command line (Default IE7 installatio) :

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1" /v "Flags" /t REG_DWORD /d 475 /f

Disable open file security warning when trying to run a .exe or .msi over a network share on local intranet or inernet using command line. Requires a restart on my windows 2003 server.

Disable ofsw
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" /v "1806" /t REG_DWORD /d 0 /f
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" /v "CurrentLevel" /t REG_DWORD /d 0 /f

Enable ofsw
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" /v "1806" /t REG_DWORD /d 1 /f
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" /v "CurrentLevel" /t REG_DWORD /d 12000 /f


Under registry you can see the zones:
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones

Zones
The Zones key contains keys that represent each security zone that is defined for the computer. By default, the following five zones are defined (numbered zero through four):
Value Setting
------------------------------
0 My Computer
1 Local Intranet Zone
2 Trusted sites Zone
3 Internet Zone
4 Restricted Sites Zone

Note By default, My Computer does not appear in the Zone box on the Security tab.

Each of these keys contains the following DWORD values that represent corresponding settings on the custom Security tab.

Note Unless stated otherwise, each DWORD value is equal to zero, one, or three. Typically, a setting of zero sets a specific action as permitted, a setting of one causes a prompt to appear, and a setting of three prohibits the specific action.



Value Setting
----------------------------------------------------------------------------------
1001 ActiveX controls and plug-ins: Download signed ActiveX controls
1004 ActiveX controls and plug-ins: Download unsigned ActiveX controls
1200 ActiveX controls and plug-ins: Run ActiveX controls and plug-ins
1201 ActiveX controls and plug-ins: Initialize and script ActiveX controls not marked as safe for scripting
1206 Miscellaneous: Allow scripting of Internet Explorer Web browser control ^
1207 Reserved #
1208 ActiveX controls and plug-ins: Allow previously unused ActiveX controls to run without prompt ^
1209 ActiveX controls and plug-ins: Allow Scriptlets
120A ActiveX controls and plug-ins: Display video and animation on a webpage that does not use external media player ^
1400 Scripting: Active scripting
1402 Scripting: Scripting of Java applets
1405 ActiveX controls and plug-ins: Script ActiveX controls marked as safe for scripting
1406 Miscellaneous: Access data sources across domains
1407 Scripting: Allow Programmatic clipboard access
1408 Reserved #
1601 Miscellaneous: Submit non-encrypted form data
1604 Downloads: Font download
1605 Run Java #
1606 Miscellaneous: Userdata persistence ^
1607 Miscellaneous: Navigate sub-frames across different domains
1608 Miscellaneous: Allow META REFRESH * ^
1609 Miscellaneous: Display mixed content *
160A Miscellaneous: Include local directory path when uploading files to a server ^
1800 Miscellaneous: Installation of desktop items
1802 Miscellaneous: Drag and drop or copy and paste files
1803 Downloads: File Download ^
1804 Miscellaneous: Launching programs and files in an IFRAME
1805 Launching programs and files in webview #
1806 Miscellaneous: Launching applications and unsafe files
1807 Reserved ** #
1808 Reserved ** #
1809 Miscellaneous: Use Pop-up Blocker ** ^
180A Reserved #
180B Reserved #
180C Reserved #
180D Reserved #
1A00 User Authentication: Logon
1A02 Allow persistent cookies that are stored on your computer #
1A03 Allow per-session cookies (not stored) #
1A04 Miscellaneous: Don't prompt for client certificate selection when no
certificates or only one certificate exists * ^
1A05 Allow 3rd party persistent cookies *
1A06 Allow 3rd party session cookies *
1A10 Privacy Settings *
1C00 Java permissions #
1E05 Miscellaneous: Software channel permissions
1F00 Reserved ** #
2000 ActiveX controls and plug-ins: Binary and script behaviors
2001 .NET Framework-reliant components: Run components signed with Authenticode
2004 .NET Framework-reliant components: Run components not signed with Authenticode
2100 Miscellaneous: Open files based on content, not file extension ** ^
2101 Miscellaneous: Web sites in less privileged web content zone can navigate into this zone **
2102 Miscellaneous: Allow script initiated windows without size or position constraints ** ^
2103 Scripting: Allow status bar updates via script ^
2104 Miscellaneous: Allow websites to open windows without address or status bars ^
2105 Scripting: Allow websites to prompt for information using scripted windows ^
2200 Downloads: Automatic prompting for file downloads ** ^
2201 ActiveX controls and plug-ins: Automatic prompting for ActiveX controls ** ^
2300 Miscellaneous: Allow web pages to use restricted protocols for active content **
2301 Miscellaneous: Use Phishing Filter ^
2400 .NET Framework: XAML browser applications
2401 .NET Framework: XPS documents
2402 .NET Framework: Loose XAML
2500 Turn on Protected Mode [Vista only setting] #
2600 Enable .NET Framework setup ^


{AEBA21FA-782A-4A90-978D-B72164C80120} First Party Cookie *
{A8A88C49-5EB2-4990-A1A2-0876022C854F} Third Party Cookie *

* indicates an Internet Explorer 6 or later setting
** indicates a Windows XP Service Pack 2 or later setting
# indicates a setting that is not displayed in the user interface in Internet Explorer 7
^ indicates a setting that only has two options, enabled or disabled


What values for Minlevel, RecommendedLevel, and CurrentLevel mean the following:
Value (Hexadecimal) Setting
----------------------------------
0x00010000 Low Security
0x00010500 Medium Low Security
0x00011000 Medium Security
0x00012000 High Security

[ZileXa]

OK so to completely remove that annoying window on XP SP3 with IE7, this should do the trick:

@echo off
:: disable security warnings
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0" /v "1806" /t REG_DWORD /d 0 /f
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1" /v "1806" /t REG_DWORD /d 0 /f
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2" /v "1806" /t REG_DWORD /d 0 /f
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" /v "1806" /t REG_DWORD /d 0 /f
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4" /v "1806" /t REG_DWORD /d 0 /f
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" /v "CurrentLevel" /t REG_DWORD /d 0 /f

[David42]

Post withdrawn

This post has been edited by David42: 16 April 2009 - 01:29 PM

[ghosthunter2010]

Turn Off security warning...
EASY!!! =)

Internet explorer->internet options->security->Local intranet->custom level->(Scroll down to miscellaneous, enable) INSTALLATION OF DESK TOP ITEMS.

Your done, enjoy.

[Methanoid]

Didnt work for me with IE8 installed.. anyone else?

[COKEDUDEUSF]

Here is another way to take care of this problem.

Registry Option:

HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesAttachments Set SaveZoneInformation to 1.

NOTE:

0 = Not Configured

1 = Enabled

2 = Disabled


You can also set this via Group Policy at the User Configuration > Administrative Templates > Windows Components > Attachment Manager node. Enable the "Do not preserve zone information in file attachments" setting.

http://searchwindows...1271199,00.html

[Acheron]

I use the following to disable any warning messages when executing software in Windows XP SP3 and IE8

;Disable security warnings
HKCU,"SOFTWARE\Microsoft\Internet Explorer\Download","CheckExeSignatures",0x0,"no"
HKCU,"SOFTWARE\Microsoft\Internet Explorer\Download","RunInvalidSignatures",0x10001,01,00,00,00
HKCU,"SOFTWARE\Microsoft\Internet Explorer\InformationBar","FirstTime",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3","1601",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3","2200",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Associations","LowRiskFileTypes",0x0,".zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.wav;"
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments","HideZoneInfoOnProperties",0x10001,01,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments","SaveZoneInformation",0x10001,01,00,00,00

This post has been edited by Acheron: 03 June 2010 - 10:24 AM

[COKEDUDEUSF]

Acheron, on 03 June 2010 - 10:24 AM, said:

I use the following to disable any warning messages when executing software in Windows XP SP3 and IE8

;Disable security warnings
HKCU,"SOFTWARE\Microsoft\Internet Explorer\Download","CheckExeSignatures",0x0,"no"
HKCU,"SOFTWARE\Microsoft\Internet Explorer\Download","RunInvalidSignatures",0x10001,01,00,00,00
HKCU,"SOFTWARE\Microsoft\Internet Explorer\InformationBar","FirstTime",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3","1601",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3","2200",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Associations","LowRiskFileTypes",0x0,".zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.wav;"
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments","HideZoneInfoOnProperties",0x10001,01,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments","SaveZoneInformation",0x10001,01,00,00,00

Can you put that in a reg file? That is not the format I used to seeing. I'm used to one of these formats.

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1" /v "Flags" /t REG_DWORD /d 219 /f

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerDownload]

[bfc_xxx]

Acheron, on 03 June 2010 - 10:24 AM, said:

I use the following to disable any warning messages when executing software in Windows XP SP3 and IE8

;Disable security warnings
HKCU,"SOFTWARE\Microsoft\Internet Explorer\Download","CheckExeSignatures",0x0,"no"
HKCU,"SOFTWARE\Microsoft\Internet Explorer\Download","RunInvalidSignatures",0x10001,01,00,00,00
HKCU,"SOFTWARE\Microsoft\Internet Explorer\InformationBar","FirstTime",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3","1601",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3","2200",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Associations","LowRiskFileTypes",0x0,".zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.wav;"
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments","HideZoneInfoOnProperties",0x10001,01,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments","SaveZoneInformation",0x10001,01,00,00,00

Can you convert this to a common registry file??? Or how do you import this to registry??

[COKEDUDEUSF]

bfc_xxx, on 07 June 2010 - 03:32 PM, said:

Acheron, on 03 June 2010 - 10:24 AM, said:

I use the following to disable any warning messages when executing software in Windows XP SP3 and IE8

;Disable security warnings
HKCU,"SOFTWARE\Microsoft\Internet Explorer\Download","CheckExeSignatures",0x0,"no"
HKCU,"SOFTWARE\Microsoft\Internet Explorer\Download","RunInvalidSignatures",0x10001,01,00,00,00
HKCU,"SOFTWARE\Microsoft\Internet Explorer\InformationBar","FirstTime",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3","1601",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3","2200",0x10001,00,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Associations","LowRiskFileTypes",0x0,".zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.wav;"
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments","HideZoneInfoOnProperties",0x10001,01,00,00,00
HKCU,"SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments","SaveZoneInformation",0x10001,01,00,00,00

Can you convert this to a common registry file??? Or how do you import this to registry??

Open up notepad. Copy and paste the code below into notepad. Then save the as whatever.reg and change the save as type to All Files.

MGadAllah, on 24 September 2006 - 11:58 PM, said:

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download]
"CheckExeSignatures"="no"
"RunInvalidSignatures"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments]
"SaveZoneInformation"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations]
"LowRiskFileTypes"=".zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.wav;"

Thanks for Kelsenellenelvian

This post has been edited by COKEDUDEUSF: 09 June 2010 - 09:27 AM