Re: MS announces change in IE behavior

From: James Guse (guse1_at_LLNL.GOV)
Date: 02/06/04

  • Next message: Russ: "NT/W2K Source leak" 
    Date:         Thu, 5 Feb 2004 15:56:56 -0800
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

            I did some testing of the registry hack to disable the MS04-004 feature
    described at
    <http://support.microsoft.com/default.aspx?scid=kb;en-us;834489>

    I cannot "disable" the feature using either registry key at the bottom of
    the page. I created both the "Feature Control" and
    "HTTP_USERNAME_PASSWORD_DISABLE" subkeys as well as the two DWORD values
    thereunder and IE still gives the "syntax error" response. What I'm trying
    to determine is whether, when the new behavior is "disabled", IE behaves
    "correctly", in that the whole @-signed URL is displayed, or simply reverts
    to the pre-patch behavior where it's obfuscated.

    Has anyone tested this issue?

    Thanks,
            Jimmy

    -----
    NTBugtraq Editor's Note:

    Most viruses these days use spoofed email addresses. As such, using an Anti-Virus product which automatically notifies the perceived sender of a message it believes is infected may well cause more harm than good. Someone who did not actually send you a virus may receive the notification and scramble their support staff to find an infection which never existed in the first place. Suggest such notifications be disabled by whomever is responsible for your AV, or at least that the idea is considered.
    -----

  • Next message: Russ: "NT/W2K Source leak"