Can I ask a general PG3 question? When would you ever select the option pictured below? Same story for "deny once". I can't think of a case when I would pick this. http://solvent-LLC.com/files/permitOnce.png It ties into my 2nd half of the question: what is the reason for putting apps that you "permit once" or "deny once" on the security tab at all? I am sure there is a reason, which is eluding me. But if there is no reason, then I guess my suggestion would be to keep those off the list, so as to reduce clutter and make it easier to read the list of authorized apps.