Introducing PC Matic — free scan PC Matic is an all-new collection of PC Pitstop's award-winning technologies in one integrated architecture. Includes the world-renowned OverDrive scanning technology with over 200 million scans run. No other product on the market today will do as much to improve the overall performance, security, and stability of your PC. Run a free PC Matic scan now! PC Matic

Make your PC run like new Tired of your unstable and crashing PC? Looking for a permanent solution for your dysfunctional XP? Don't compromise — get our new, state-of-the-art technology. Reimage requires no setup and causes no loss of data or applications. This is the ultimate professional repair tool, which works like "magic," according to eWeek. Get a free Reimage PC booster with every scan. Try it now! Reimage

Save up to 76% on quality inkjet ink We offer the sharpest prices on the Web for quality ink and laser toner. Bonus: save an extra 10% by using coupon code DPL7349X. Free shipping to contiguous U.S. locations for all orders over $50. Offer expires 9/30/2009 and excludes OEM items. 4InkJets

See your ad here

By Susan Bradley

Internet Explorer 8 includes a security feature that shuts down misbehaving applications before they can harm your system.

This capability, known as Data Execution Prevention (DEP), runs by default when IE 8 is installed on XP SP3 and Vista SP1 or later, but it may not always be clear to you why DEP has put the brakes on one of your PC's applications.

DEP is the best reason I know for updating to Internet Explorer 8 and Vista SP1. For many years, Microsoft has included DEP — which is also called No-Execute (NX) — only in parts of Windows. For example, DEP is available in IE 7 but is off by default to avoid conflicts with old, incompatible programs.

DEP is now a key part of Vista and Internet Explorer 8. When I try to install older software on newer machines, I must configure Data Execution Prevention to allow the software installer to run with DEP disabled. (See Figure 1.)


Figure 1. You can configure Data Execution Prevention to create an exception for an application.

To open the Data Execution Prevention dialog in XP, open Control Panel, choose System, and then select the Advanced tab. Click the Settings button in the Performance section and select the Data Execution Prevention tab. In Vista, choose Performance Information and Tools, click Advanced Tools in the left pane, select Adjust the appearance and performance of Windows, and click the Data Execution Prevention tab.

For instance, when I install QuickBooks 2007 on Windows Server 2008, I have to exclude under the DEP tab the QuickBooks updating tool in order to install it on the server.

Keep in mind that the only reason I'm doing so is because I trust Intuit, the publisher of QuickBooks. If I didn't change the settings, DEP would prevent me from installing an older version of this software on the newer system.

If I didn't already trust the vendor, I'd look for valid reasons why DEP was blocking the installation before I took the step of changing any DEP settings. In most instances, good, up-to-date software shouldn't need to be excluded from DEP.

DEP helps block malware in Internet Explorer

Since IE 7, Microsoft has used DEP to help thwart online attacks in the browser itself. What the company didn't do until IE 8, though, was to enable DEP by default.

Prior to IE 8, DEP was disabled by default for compatibility reasons, as documented on the IE blog. Many older IE add-ons were built using earlier versions of the Active Template Libraries (ATL). They aren't compatible with DEP, therefore, and crash when IE loads them.

When DEP is enabled and combined with Address Space Layout Randomization (ASLR), IE's ability to protect against Web-based attacks improves considerably. In a nutshell, ASLR is designed to make it harder for automatic attacks to occur. You can read more about ASLR in the MSDN blog.

Specifically, ASLR helps prevent exploits both in IE and in any add-ons that are loaded. Even with the new security protections in IE 7 and 8, the browser is still targeted more often by malware authors than other browsers. This has caused security pundits to state, as Wired's Brian X. Chen does on the Gadget Lab blog, that Apple's new Snow Leopard operating system is "less secure than Windows, but safer."

(If you use Snow Leopard, I encourage you to update your system to OS X version 10.6.1. This includes a patch for the insecure Adobe Flash Player that Snow Leopard shipped with, as documented in an Apple security update.)

There are many protections built into Internet Explorer 8 that may be considered just another annoying browser crash when seen in action. (See Figure 2.)


Figure 2. When DEP prevents bad code from executing in IE, it closes the browser and pops up an alert.

Unfortunately, it's not always obvious that IE is actually protecting you when in fact it is.

Find the source of DEP-related browser crashes

Some PC support sites, such as the Tech Support Forum, recommend that you disable DEP to prevent it from closing IE whenever an unauthorized memory access is detected. However, once you understand why the browser is shutting down, it becomes clear why disabling DEP is a bad idea.

Generally, DEP errors in IE are due to an add-on, a hardware conflict, or a corrupted IE installation. If DEP continually shuts down IE on your system, find the cause of the failures instead of disabling DEP. For example, there are reports that stealthy toolbars from the Chinese search engine Baidu are the source of many DEP closures.

If DEP is closing IE 8 on a regular basis, first try opening the browser with all add-ons disabled. To do so, click Start, All Programs, Accessories, System Tools, Internet Explorer (No Add-ons).

If the DEP closures stop, this indicates that an add-on is causing the problem. Disable each add-on and then enable them one by one until the crashes return. At that time, you've found the culprit.

To review the processes DEP has enabled by default, press Ctrl+Alt+Del and click Start Task Manager. Click the Processes tab, select View, and choose Select Columns. Scroll to the bottom of the resulting dialog box, check the Data Execution Prevention option, and click OK.

A new column appears in the Processes window that shows which processes on your PC are natively protected by DEP. The more processes for which DEP is enabled, the better your system is protected from buffer overflows and the other memory-related vulnerabilities DEP shields you from.

If you decide that you must disable DEP, you can easily do so in the 32-bit versions of IE 7 and IE 8.

To find this setting in IE 7, click Tools, Internet Options, Advanced, and scroll to the Security section, as shown in Figure 3. (Press the Alt key if IE's standard menu isn't visible.)

In IE 8, first right-click the IE shortcut, select Run as administrator, and then enter the browser's Advanced options.

In both IE 7 and IE 8, uncheck Enable memory protection to help mitigate online attacks to disable DEP.


Figure 3. On 32-bit systems, DEP is enabled by the "Enable memory protection" option, which is fourth from the bottom in this screen shot.

The 64-bit version of IE 8 lacks a DEP option on the Advanced tab. The reason it's not visible in the 64-bit version of IE is that DEP is enabled automatically and can't be disabled. If you're running a 64-bit operating system, you probably want the protections that DEP gives you.

Table of contents

Get Windows and tech news daily Replenish your mind with tech excellence! Visit the Infopackets site right now and get your daily fix of Windows news, reviews, tech tips, plus freeware goodies daily. Bonus: join our mailing list today and you'll also receive our highly coveted Top 10 Tech Reports, including PC Security Essentials, Windows Optimization Secrets, Top Freeware Antivirus Reviewed, MS Office Alternatives, and more. Infopackets Windows Newsletter

Your old drivers are slowing down your PC Driver Detective provides the most up-to-date drivers specific to your computer, including all major-brand OEMs (Dell, HP, Compaq, Toshiba, etc.) and generic brands. We access a database of over 9.2 million device-associated drivers — the largest driver update database on the Internet. Driver Detective saves you endless hours of work and aggravation normally associated with updating drivers. Driver Detective

Get your message seen by 400,000 readers Does your company offer a product or service? Now you can place an ad in the Windows Secrets Newsletter and be seen by more than 400,000 active buyers of PC hardware and software. Bid as much or as little as you like to get the ideal ad placement. Take advantage of our all-new design interface, allowing larger images and longer text, and get updated stats in real time! Windows Secrets Newsletter

See your ad here

• "I don't know the position in the U.S., but here in Europe, sensitive Web sites such as [those for] Internet banking are usually configured to defeat keyloggers.
  
  "The best way is for the bank to supply a token — similar in concept to the SecurID or Vasco two-factor authentication systems that readers working in IT departments may be familiar with — that requires you to insert a bankcard and enter your usual PIN number before it generates a unique key that will allow logon.
  
  "Even if this is read by a keylogger, it won't work for any subsequent logon attempts. The drawback is obviously that you need to carry it with you and be able to attach it (via USB) to any public computer you want to use.
  
  "Alternatively, banks require you to select a long password — say, 12 characters — and then ask at logon for a random subset: e.g., 'Please enter the 8th, 3rd, and 10th character of your password.'
  
  "For further protection, these characters may be selected by using drop-down menus, which should defeat most keyloggers.
  
  "The drawback is a slight weakening against brute-force guessing — you have a chance of guessing correctly if you can make many tens of thousands of attempts — but there are strong limitations on the number of incorrect logon attempts that are allowed before the account is locked (typically three), requiring a phone call to reset the procedure.
  
  "Simpler still is for the bank to issue a 'one-time pad' of randomly generated passwords that you use once and then discard. Obviously, a written pad can be lost, but as long as you don't keep it with other identifying information — e.g., your account number — this should not be a problem.
  
  "I think one of the reasons for the different systems in Europe is that here the onus is on the banks to provide security. If your bank account or credit card is 'hacked,' any resultant loss is the responsibility of the bank, unless they can demonstrate collusion on the account holder's part. I understand this doesn't apply in the U.S."
  

Table of contents

By Stephanie Small Everyone — well, practically everyone — enjoys a slice of pizza now and then. Be it cheese, meat, veggies, or some weird combination of them all, pizza is the perfect all-inclusive and delicious meal! Domino's, however, kicks that claim up a notch with its latest offerings. People consuming things like "cheese burst pizza" and "crispy nacho platter pizza" may make you think there's a genetic predisposition to eat unhealthy foods. Now pizza is even being offered as a dessert, with a strawberry-like substance on one and a cookie look-alike on the other. Are you brave enough to give these a try? Play the video

Table of contents

TOP STORY By Susan Bradley Control ill-behaved apps with DEP in IE DEP helps block malware in Internet Explorer Find the source of DEP-related browser crashes KNOWN ISSUES By Dennis O'Reilly Some keyloggers can read the Clipboard, too WACKY WEB WEEK By Stephanie Small Humans will eat almost anything … if it's pizza

	LANGALIST PLUS By Fred Langa Best way to clean a PC with multiple accounts System-wide cleanup help for multiuser PCs Another way to track down unknown devices PC locks user out of his own music files Save power by playing movies from hard drive
	BEST SOFTWARE By Ian "Gizmo" Richards What to do when a program installation fails The causes of software-installation quagmires Easier to prevent install errors than cure them A good way to remove unmonitored installs
	PERIMETER SCAN By Ryan Russell Success in digging malware from my own back yard Using multiple tools to clean infections Struggling to get Windows Update back online The trick to manually updating system files

There's no fixed fee! Contribute whatever it's worth to you Readers who make a financial contribution of any amount by Sept. 23, 2009, will immediately receive the latest issue of our full, paid newsletter and 12 months of new paid content. Pay as much or as little as you like — we want as many people as possible to have this information.

A portion of your support helps children in developing countries Each month, we send a full year of sponsorship to a different child. Your contributions in September are helping us to sponsor Allan, a 6-year-old boy from a village in Ecuador. Children International channels development aid from donors to Allan and his community. We also sponsor kids through Plan USA and other respected agencies. More info

More info on how to upgrade

Table of contents

• Visit our Unsubscribe page.
  

Table of contents