Tuesday, April 13, 2004

Hi there,

Back from a long Easter break and boy did I need it. ;-)

A lot of folks don't take the time to tighten their browser security settings and then wonder why their antivirus software didn't stop a particular exploit.

Here's what you must do to build strong walls around your internet connection:

How to properly secure Internet Explorer

To configure the Security settings for Internet Explorer:

Select Internet Options under the Tools menu.
Select the Security tab
Click Custom Level for the Internet zone.
Most of the flaws in IE are exploited through Active Scripting or ActiveX Controls.

Under Scripting, select Prompt for Allow paste operations via script.
This increases computer security by preventing content from being exposed from your clipboard.

Note: Active Scripting should not be disabled since it is used by many websites.

ActiveX Controls are not as popular but are potentially more dangerous as they allow greater access to the system.

Select Prompt for Download signed ActiveX Controls.
Select Disable for Download unsigned ActiveX Controls.
Select Disable for Initialize and script ActiveX Controls not marked as safe.

Java applets typically have more capabilities than scripts.

Under Microsoft VM, select High safety for Java permissions.

This puts access barriers around the Java applet and prevents privileged access to your system.

Under Miscellaneous select Disable for Access to data sources across domains.

This protects you from cross-site scripting attacks.

Also, make sure that no un-trusted sites are in the Trusted sites or Local Intranet zones as these zones have weaker security settings than the other zones.

These security settings for Internet Explorer will also be automatically applied to your other Microsoft applications such as Outlook and Outlook Express.

For more information, you should read this page on Computer Security


Links to this post:

Create a Link

<< Home