Windows Security vs. ActiveX

Hi Y'all,

I heard a bird, who said Windows latest security patch against (MBlast or hackers?) would be ineffective whilst "ActiveX" was still 'Enabled'. So I went into -

Tools/Internet Options/Security/Custom Level
...and 'Disabled' the first five ActiveX items.

Question is, I've search all over and am unable to find any support to this theory. Some sites of course will not operate correctly without ActiveX, yet this is apparently the loophole though which some hackers can enter my system.

I'm running WindowsXP pro, IE6

Any hints? Is it safe to 'enable' Activex again, or does anyone know of a further patch being due or available?

Cheers
Jay

 

Hello Jay,

Yes, its true, read this thread on SpywareInfo http://forums.spywareinfo.com/index.php?showtopic=10997

There is a post of mine towards the end, I prompt for the "signed" activeX, I've always done that.

Allowing activeX is dangerous as a rule, it gives complete acces to a system. Unless you completely trust the site, not a good idea. A lot of what are called "driveby downloads" enter this way w/o the user's permission.

One way to deal with this problem is to add a trusted site to that zone in your Browser security tab and allow activeX there.

Regards - Charles

 

Hello Jay,

Another reference http://www.computercops.biz/article3394.html

Regards - Chales

 

Hi Charles,

Thanks for the response, I was about to ask for more details on "adding a trusted site to that zone" (whatever that means) but now MS have come up with another patch. I presume the correct one?

Cheers
Jay

 

Hi Jay,

"ask for more details on "adding a trusted site to that zone" (whatever that means) "

If on line: IE tool bar > Tools > internet options > security tab > trusted sites > sites. There add in the box provided site's address. You can copy/paste.

Regards - Charles

 

Thanks again, Charles. Done added a coupla trusted sites. Should be the end of this caper, we hope!

Cheers
Jay