Specifies which folders have permission to load and execute files that contain code.
| Type: | String |
| Saved in: | Registry |
| Initial value: | Varies, may be locked by a CAD administrator |
To minimize the possibility of loading and executing malicious code, always set the TRUSTEDPATHS system variable to unique, read-only folders where your authorized applications are located. This includes the following file types:
- ARX, DBX, CRX, HDI files
- LSP, FAS, VLX, MNL, SCR files
- .NET assemblies
- VBA macros (DVB files)
- acad.rx
- JavaScript
- DLL files
Valid strings include the following:
- When TRUSTEDPATHS is set to one or more folder paths in quotes and separated by semicolons, the previously listed file types are loaded from the specified folders.
- When TRUSTEDPATHS is set to "" (an empty string) or "." (a period), there are no trusted folder paths in addition to the implicitly trusted ones.
- When TRUSTEDPATHS includes a folder that ends with \... (backslash and three dots), all of its subfolders are also trusted.
The following folders are always trusted:
- C:\Program Files\ and its subfolders
- C:\Program Files (x86) and its subfolders
Note: In some circumstances, it might be more convenient to specify the relative file path in the
Filename parameter when using the LOAD function.
- These trusted paths can also be specified in the Options dialog box
Files tab, the Security Options dialog box, or in the Deployment Wizard.
- The setting of the SECURELOAD system variable determines whether other locations, including the current drawing folder, are trusted. Signed DLLs are automatically trusted.
Note: Beginning with AutoCAD 2013 SP1, the reserved
acad<release>.lsp and
acad<release>doc.lsp files and their successors are loaded only from their default installation folders:
<install folder>\Support and <install folder>\Support\<language> respectively.