Back in September, I posted a thread about a security hole in the "Software Restrictions" policy. Thru a simple work-around, non-administrators could circumvent policy restrictions created by system administrators. Juke Chou was very helpful in reproducing this problem and reporting it to the appropriate group at Microsoft. However, I have never heard anything back. I realize that with today's operating systems, fixes can't happen overnight. But 4+ months seems a long time to spend making a decision about what to do with a security violation/elevation. Either a "yes we're going to patch this for W7" or a "this will be addressed in W8" or even a "yes we see this security hole but we don't intend to repair it" would be appreciated.