GPO tool

Group Policy made searchable

A free ADMX browser or comparison tool for IT administrators. Search policies, find registry keys, and see exactly what each setting writes to the Windows Registry. Or compare two GPO backups to see exactly what has changed between them.

Select a product
  • Select a category.

Trust logic for file attachments

This policy setting allows you to configure the logic that Windows uses to determine the risk for file attachments.

Preferring the file handler instructs Windows to use the file handler data over the file type data. For example, trust notepad.exe, but don't trust .txt files.

Preferring the file type instructs Windows to use the file type data over the file handler data. For example, trust .txt files, regardless of the file handler.

Using both the file handler and type data is the most restrictive option. Windows chooses the more restrictive recommendation which will cause users to see more trust prompts than choosing the other options.

If you enable this policy setting, you can choose the order in which Windows processes risk assessment data.

If you disable this policy setting, Windows uses its default trust logic, which prefers the file handler over the file type.

If you do not configure this policy setting, Windows uses its default trust logic, which prefers the file handler over the file type.

Registry Information

VendorMicrosoft
ProductAttachment Manager
CategoryAttachment Manager
Applies toUser Configuration
Supported onWindows XPSP2
Registry Key[HKCU]SoftwareMicrosoftWindowsCurrentVersionPoliciesAttachments

Policy Settings

Determine risk by

Registry Key[HKCU]SoftwareMicrosoftWindowsCurrentVersionPoliciesAttachments
Value NameUseTrustedHandlers
TypeREG_DWORD
Values
  • Preferring the file handler (2)
  • Looking at the file handler and type (3)
  • Preferring the file type (1)