Re: All patches, but still exploited

From: Greg (nospam_at_nospam.com)
Date: 04/12/04 

Date: Mon, 12 Apr 2004 14:15:13 -0700

"Jeff Cochran" <jcochran.nospam@naplesgov.com> wrote in message
news:4080ea0c.15206696@msnews.microsoft.com...
> Fix the browser how? The security settings are there by default to
> not run scripts, not run executables, not run ActiveX components, etc.
> If a user chooses to run them, and there are valid reasons where you
> may need to, such as on a trusted intranet, then how can a programming
> company fix a user's behavior? They tried by setting the system to be
> restrictive, but in your case that didn't help.

I had security at the default levels except for uninstalling the enhanced
security of Windows 2003. The same problem happened with Windows 2000 with
the default settings. Nothing to fix? How do you figure? If a user runs
an ActiveX component or something else they shouldn't that's one thing, but
to have something automatically run due to an exploit is another.

> I'm sure Microsoft is open to any suggestions on ways it could modify
> software to prevent users from injuring themselves. But the analogy
> is a little kid. You lock him in his room and he'll never get hit by
> a car, but he misses his Junior Prom. So you let him out and teach
> him not to get hit by a car, but one day he runs out in the street
> anyway. Maybe if software allowed you to run free until it thought
> you were about to do something stupid and then locked you in your
> room, but parents have had a thousand generations to solve that
> problem with no results.
>

Your analogy does not apply to this situation.

Relevant Pages

  • Re: Cannot find server or DNS Error
    ... > that maybe my security or other settings need changing. ... > my present settings what is the easiest/safest way to try changes. ... Help with Hijackware ... CWShredder (fix all found) ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: Active x settings ...help!!!
    ... There's a REG file which will fix this. ... To remove the malware which probably caused this problem, ... x settings do not allow running this page. ... have a security tab......HELP!!!!!!!! ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Web searching redirects
    ... when I do a web search. ... In my internet security ... Does anyone know or know where I can get the settings to ... fix this problem? ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: Windows Update not working, ActiveX not running, Cryptographic err
    ... The cryptographic operation failed due to a local security option ... |> default settings (doesn't fix it) or deleting a Safer key in HKLM or HKCU ... |> with "Your security settings do not allow websites to use ActiveX controls ...
    (microsoft.public.windowsupdate)
  • Re: GPO Update Problem (SYSVOL access via UNC)
    ... Server Security and Auditing Policy ... This list only includes links in the domain of the GPO. ... The settings in this GPO can only apply to the following groups, users, ...
    (microsoft.public.win2000.group_policy)