Comments on: About protecting the computer http://tips.vlaurie.com/2008/06/how-to-protect-your-computer/ News, commentary and tips for safer and easier computing Tue, 09 Mar 2010 16:48:37 +0000 http://wordpress.org/?v=2.9 hourly 1 By: Vic http://tips.vlaurie.com/2008/06/how-to-protect-your-computer/comment-page-1/#comment-4818 Vic Wed, 02 Jul 2008 19:21:45 +0000 http://tips.vlaurie.com/?p=861#comment-4818 Thanks, Dean. I think that some form of white-listing is an excellent idea. Thanks, Dean. I think that some form of white-listing is an excellent idea.

]]> By: dean http://tips.vlaurie.com/2008/06/how-to-protect-your-computer/comment-page-1/#comment-4817 dean Wed, 02 Jul 2008 18:40:13 +0000 http://tips.vlaurie.com/?p=861#comment-4817 I've been away, so I'm only getting around to commenting on this now. I use a system that is fairly unique. Rather than relying on black-lists -- a futile task when hundreds of new malware-spewing sites are created daily -- I rely on a white-list approach. Through several simple registry changes, I make the Restricted sites zone the default zone, while allowing the user to add sites to the Internet zone and no longer allowing sites to be added to the Restricted sites zone (since it is now the default zone). Unless a domain has already been added to either the Internet zone or the Trusted sites zone, one is very unlikely to experience a drive-by download from a malicious site, since the Restricted sites zone (by default) does not permit scripting or downloads. Occasionally, it can be a nuisance to get certain sites to work properly (many sites often require a multitude of enabled domains to work properly), but it is worth the effort in my opinion. The practices noted in the squidoo.com link are also worthwhile. However, I would add that one should NOT rely on site ratings given by SiteAdvisor, which are often shockingly inaccurate. However, do go siteadvisor.com and see what the more reliable reviewers have to say about the domain in question. The reviews written by good reviewers (SiteAdvisor has a reputation rating) are generally more reliable than SiteAdvisor's ratings. I’ve been away, so I’m only getting around to commenting on this now. I use a system that is fairly unique. Rather than relying on black-lists — a futile task when hundreds of new malware-spewing sites are created daily — I rely on a white-list approach.

Through several simple registry changes, I make the Restricted sites zone the default zone, while allowing the user to add sites to the Internet zone and no longer allowing sites to be added to the Restricted sites zone (since it is now the default zone).

Unless a domain has already been added to either the Internet zone or the Trusted sites zone, one is very unlikely to experience a drive-by download from a malicious site, since the Restricted sites zone (by default) does not permit scripting or downloads. Occasionally, it can be a nuisance to get certain sites to work properly (many sites often require a multitude of enabled domains to work properly), but it is worth the effort in my opinion.

The practices noted in the squidoo.com link are also worthwhile. However, I would add that one should NOT rely on site ratings given by SiteAdvisor, which are often shockingly inaccurate. However, do go siteadvisor.com and see what the more reliable reviewers have to say about the domain in question. The reviews written by good reviewers (SiteAdvisor has a reputation rating) are generally more reliable than SiteAdvisor’s ratings.

]]> By: Vic http://tips.vlaurie.com/2008/06/how-to-protect-your-computer/comment-page-1/#comment-4816 Vic Sun, 29 Jun 2008 00:35:29 +0000 http://tips.vlaurie.com/?p=861#comment-4816 Thanks for the link. I am sorry to be late in noting your comment but last week was really hectic. Thanks for the link. I am sorry to be late in noting your comment but last week was really hectic.

]]> By: Tiktaalik http://tips.vlaurie.com/2008/06/how-to-protect-your-computer/comment-page-1/#comment-4815 Tiktaalik Tue, 24 Jun 2008 20:01:10 +0000 http://tips.vlaurie.com/?p=861#comment-4815 Hi Vic, Here's how I protect (most of) my computers: http://www.squidoo.com/security2 Philip Hi Vic,

Here’s how I protect (most of) my computers:

http://www.squidoo.com/security2

Philip

]]>