John Harvey wrote:
1. Having IE should not be a danger. Using it is depending on where you go.
Actually, you need IE to perform Windows Update, which is all I use it for
now.
AFAIK, unfortunately, having a working install of IE is indeed what's
all that's required in numerous attacks. You don't have to be using it
nor any browser. This is an inherent danger with integrating technology
such as a web browser with the operating system itself.
Certainly using a different browser protects from threats such as
ActiveX, browser-specific scripting or browser-specific browser-helper
objects. But in a number cases, those are just the 'low hanging fruit'.
Access into the system via unprotected/unpatched RPC for example can
still activate the full IE even if you don't use it yourself.
And, of course, Microsoft has worked hard to stick to its claim that
because of the integration, attempting to remove IE can result in a
damaged OS.
Sheesh.
Tom Liotta
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact
[javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.