Posts tagged ‘active-x’

Firefox and NoScript


As I thought it would be, this is beyond irritating on a lot of pages.  I’d suggest little-used browsers.  Chrome is one; K-Meleon is another.  Opera is too well known.  I’d be willing to bet (I’ll try either today or tomorrow) that games on Pogo.com (which is legit, by the bye–‘reallyhappy108’ is my [temporary] use-name and the effects of multiple seizures still show, chess only) will be impossible.  There is no perfect defense.

The NoScript and any similar solutions like disabling Adobe and Active-X will probably drive you crazy.  WTF; we live in the states anyway.  And for the record, that little phrase was inherited (WTF) from Morse to teletype, so I was using it during the Vietnam war.

–Glenn

(*****)

Incidentally, IE8 is more irritating and not a bit more secure.  Not that I’ve tried it, you understand….or use it, when I use IE.

October 10, 2008 at 6:32 pm Leave a comment

The Windows Updates


I might be somewhat of a nag, particularly at times.  This is the most important time in 2008 to let Windows update.  The Access data base and Word were particularly at risk, there were some Active-X apps that were at best risky (and disabled)…26 ZERO-DAY VULNERABILITIES.  Let them execute, no matter how much of a fundamental pain it is.  Bear in mind that file formats in general are at risk, at least the most-popular (I will repeat, using Google Gadgets right now is not recommended, and I have made an earlier post to the effect).   Abiword is something that uses different file formats, and I do actually recommend it–but it’s only a word processor.  The OpenOffice *.odt (and so forth) files are not going to be particularly secure at this time.

 

What am I saying? back up your data.  White-line it (protect it from outside, unauthorized access, particularly active access).  I was screaming about the always-on internet when it appeared because it would encourage things precisely like this.  I’ve yet to see a modem that connects on-request, although my system nearly comes close.  The reason for that is quite simple; something always connected to the internet allows a great deal more access from outside than something that connects to it for usage only (and ideally would be disconnected by the [expletive deleted] system after too much lack of usage, similar to Gmail).  Unfortunately that model couldn’t work for at least most businesses at this point.  Nor would it work for the streamers.

 

What I’m trying to do is encourage a feeling of paranoia.

 

Why?

 

About 50% of the Internet, especially home users, are absolutely totally unprotected against nearly all attacks.  Many even delay or deny virus definition updates.

–Glenn

August 14, 2008 at 7:57 am Leave a comment

IE Zero-Day Attack Still In The Works


As in, if you use the Snapshot Viewer* for Microsoft Access, used by IE.  There’s an Active-X Control (which means they can run nasty things on your computer like keyloggers) that’s flawed.  The only real suggestion I’ve seen so far is run Firefox instead.  I personally like Avant; don’t follow any lyrics to bands named Avant, by the way.

*Microsoft Office older than 2007.

–Glenn

July 17, 2008 at 7:28 am Leave a comment