Automatic Updates security concern
- From: "rusga" <only@newsgroup>
- Date: Thu, 29 Nov 2007 16:44:10 -0000
Hi,
Is there any way of setting the AU repository so it never uses https (tcp
443) and only uses http (tcp 80)?
Or, it uses only admin allowed update servers?
This might be a bit strange, but on a highly security strict LAN with
content filtering proxy (as in this case), this imposes a security risk
since https doesn't permit content parsing. Meaning that tcp 443 rules
*must* be set at the routers/firewalls and so, default configured http
clients (browsers on out-of-the box installs for instance) end up rendering
content that they weren't suposed to.
Thank you,
rusga
.
- Follow-Ups:
- Re: Automatic Updates security concern
- From: Roger Abell [MVP]
- Re: Automatic Updates security concern
- Prev by Date: THE SOLUTION!!! anyone with security toolbar 7.1 follow this threa
- Next by Date: Re: spam email sender field
- Previous by thread: Re: Just informed that unauthorized people reading hotmail
- Next by thread: Re: Automatic Updates security concern
- Index(es):
Relevant Pages
|
|
