Results 1 to 4 of 4
  1. #1
    Bronze Lounger
    Join Date
    Jun 2001
    Location
    New York, New York, Lebanon
    Posts
    1,449
    Thanks
    1
    Thanked 1 Time in 1 Post

    Selective Security (IE ver. 6x)

    <img src=/S/hello.gif border=0 alt=hello width=25 height=29> Loungers

    What are the <font color=blue>"Best"</font color=blue> security settings for an average user of the Internet?

    By best I mean is it possible to selectively have Active-X components work. I have an Active-X control for my Juno e-mail client, this one I want to run all the time with out asking me.

    But some other Active-X components are <font color=red>"BAD"</font color=red> <img src=/S/aflame.gif border=0 alt=aflame width=16 height=16> <img src=/S/cauldron.gif border=0 alt=cauldron width=20 height=20> <img src=/w3timages/censored.gif alt=censored border=0> <img src=/S/dragon.gif border=0 alt=dragon width=17 height=15> that can <img src=/S/drop.gif border=0 alt=drop width=23 height=23> you get you <img src=/S/cooked.gif border=0 alt=cooked width=50 height=46>...

    So how can I set my security settings so that I won't get <img src=/S/cooked.gif border=0 alt=cooked width=50 height=46>, and I will be able to sleep on <img src=/S/cloud9.gif border=0 alt=cloud9 width=25 height=23> knowing that I won't be <img src=/S/hosed.gif border=0 alt=hosed width=73 height=24>

    And sorry for the excessive use of the Smilies, <img src=/S/notmyfault.gif border=0 alt=notmyfault width=15 height=15> you have to admit they are <img src=/S/cool.gif border=0 alt=cool width=15 height=15>

    Wassim
    <img src=/S/compute.gif border=0 alt=compute width=40 height=20> in the <img src=/S/bagged.gif border=0 alt=bagged width=22 height=22>

  2. #2
    Silver Lounger
    Join Date
    Jan 2001
    Location
    Long Beach, California, USA
    Posts
    1,912
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Re: Selective Security (IE ver. 6x)

    The security is limited in IE and the major security scheme that is "built-in" involves the use of "Zones". You first decide how you want to set up each zone, and then you specify which zone you want certain sites to be in. Sounds easy, but it is not. Since there are a multitude of sites on the Internet, how can you decide ahead of time what zone each the site should go in? Since you don't necessarily know what sites are 'bad', how can you put all the bad sites in the Restricted zone?

    IE does not give you an easy way to 'selectively' use specific ActiveX components. However, you can prevent NEW ActiveX items from being downloaded, and you can prevent ActiveX components that are not marked "safe" from running. This generally provides good protection.

    There are many choices and options. This is a huge topic and people have lots of different opinions...

  3. #3
    Super Moderator jscher2000's Avatar
    Join Date
    Feb 2001
    Location
    Silicon Valley, USA
    Posts
    23,112
    Thanks
    5
    Thanked 93 Times in 89 Posts

    Re: Selective Security (IE ver. 6x)

    Do you like answering Yes/No questions? Setting various of your security options to Prompt lets you know whether, for example, the site wants to invoke a local program (ActiveX control) and/or drive it with scripts. Unless IE6 has changed in this regard, you won't know exactly what the page wants to run without viewing its source code. But at least this way you get an idea that something is about to happen before you let it do to you what it wants to do.

  4. #4
    Silver Lounger
    Join Date
    Jan 2001
    Location
    Long Beach, California, USA
    Posts
    1,912
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Re: Selective Security (IE ver. 6x)

    The IE prompt warnings are sufficiently vague as to not be exceedingly useful -- "Do you want to run scripts'? appears instead of, "Do you want to run scripts that will hijack you homepage?" But at least they let you know what is coming. The problem is that they get annoying very quickly -- certain pages will hit you with 5-6 right in a row before you can even see the page.

    There are many options out there. There ARE pre-designed lists that can add a bunch of 'rogue' web sites to your Restricted zone. There are programs that set the Kill Bit for a bunch of 'rogue' ActiveX controls. You can set your Internet restrictions very high (no script, no ActiveX) and use a button to quickly add desired sites to the "Trusted" zone. It depends on you level of paranoia -- and on what sites you plan on visiting...

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •