Re: IE Security-- useless

From: "Sync" <kdd21@xxxxxxxxxxx>

| Just tried running IE on a newly installed W2003 server box that we're
| setting up for testing. Then I needed to download some additional
| software for it from msdn. Default IE security settings made it
| impossible. The "gold bar's" only option is to "get help for the gold
| bar" or something like that. Directions there to fix the problem did
| not fix it. So, finally out of frustration I did two things-- first,
| turned off the popup blocker. Still not enough. Then, I went into
| security settings. Won't let me set it below High for the internet
| zone. So, I went into custom and set absolutely everything to ENABLE.
| Voila-- now I could finally download the needed Microsoft software
| from Microsoft's own site.
|
| IE security is great, but if users have to turn it all off like I did
| in order to get it to do the most basic operations that I *know* are
| not security breaches, then it's completely useless. Security is no
| good if it is so complicated that users will just turn it off out of
| frustration because they can't get their work done otherwise. Most
| users don't know an ActiveX download from any other kind or why they
| should care, the vast majority of security options are meaningless
| gibberish to a large number of users who, nonetheless need to download
| things occasionally.
|
| Microsoft: GET A CLUE GUYS! Quality matters. You need a Steve Jobs
| who will instantly veto such a release simply because there's no way an
| end user could be expected to put up with it. NOW I see why you
| constantly resort to underhanded lock-in schemes and anti-OSS FUD
| campaigns in order to protect your eroding customer base-- you are
| clearly fully aware that if people actually had a choice there's no way
| they'd EVER actually choose to use this crap.

You shouldn't be downloading from the POV of a server. That should be done from a
workstation and the files scanned for malware prior to being installed on the server.

You need to get a clue and realize that you don't use a server like you would a workstation.
That's not its role and you should respect its role and position in the LAN hierarchy.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm


.

Relevant Pages

  • Re: SceCli Error 1202 filling up the Event Log!
    ... > after restarting the Win2003 server, the secedit.sdb database does not get ... >>> security database and have it recreated. ... >>> configuration\windows settings\security settings, you should inventory ...
    (microsoft.public.win2000.advanced_server)
  • Re: Critical Update - tips
    ... > I have same problem - unable to download recent Critical ... Recheck your Security & Privacy settings AND the ADVANCED settings in I.E. ... In Internet Explorer> Tools, click Internet Options, and then click Languages.... ...
    (microsoft.public.windowsxp.security_admin)
  • Re: SBS 2003 After Service Pack 1 for SBS
    ... Controllers" groups have been added to the new CERTSVC_DCOM_ACCESS security ... we can have Certificate Services update the DCOM security settings ... down time for the server - probably over a weekend. ... Then please run command "iisreset" to refresh IIS ...
    (microsoft.public.windows.server.sbs)
  • Re: Print Groups
    ... One for test and then one for all printer objects on a server. ... Change the settings on one printer, ... Used to set print queue security. ...
    (microsoft.public.windows.server.clustering)
  • Re: Open file - security warning....How do I disable it?
    ... You possibly should move this over to the IE security newsgroup, ... IE internet options have both all user and per user settings. ... We are in the process of migrating to windows server 2003. ... and then remove security inside the network. ...
    (microsoft.public.security)