pelvis_3
HWF Member For Life
Software giant Microsoft has outlined its planned security changes to Internet Explorer, which it wants to release sometime next year.
IE 7 will have four classifications for Web sites: Internet, local intranet, trusted, and restricted. Users will be able to allocate security settings so that their browser will be tougher on sites it knows nothing about, but will be pretty lax with sites that you know are safe.
For example, you could decide that it was perfectly safe to let you run Active X controls on a nice site like the INQ, but not on a risky site which is likely to be spoofed such as www.microsoft.com.
According to the "bogs" of Microsoft engineers Vishu Gupta, Rob Franco, and Venkat Kudulur, here, when a PC is not on a managed corporate network, IE will treat apparent intranet sites as if they were on the Internet. D'oh.
This will remove the attack surface of the intranet zone for home PC users, they think. If a machine is running on a domain, IE 7 will automatically detect the intranet sites and revert to the intranet zone settings. Network administrators will be able to set group policies to ensure the browser runs as desired.
When IE 7 runs in Windows "Vista", the Interweb zone will run in protected mode which will stop it being taken out by most of the attacks that have turned over IE6.
Of course the downside of all this is that it will require home users, who have probably just worked out how to install software using default settings, to configure the whole setup properly. We hope you've got all that.
Article - The Inquirer
IE 7 will have four classifications for Web sites: Internet, local intranet, trusted, and restricted. Users will be able to allocate security settings so that their browser will be tougher on sites it knows nothing about, but will be pretty lax with sites that you know are safe.
For example, you could decide that it was perfectly safe to let you run Active X controls on a nice site like the INQ, but not on a risky site which is likely to be spoofed such as www.microsoft.com.
According to the "bogs" of Microsoft engineers Vishu Gupta, Rob Franco, and Venkat Kudulur, here, when a PC is not on a managed corporate network, IE will treat apparent intranet sites as if they were on the Internet. D'oh.
This will remove the attack surface of the intranet zone for home PC users, they think. If a machine is running on a domain, IE 7 will automatically detect the intranet sites and revert to the intranet zone settings. Network administrators will be able to set group policies to ensure the browser runs as desired.
When IE 7 runs in Windows "Vista", the Interweb zone will run in protected mode which will stop it being taken out by most of the attacks that have turned over IE6.
Of course the downside of all this is that it will require home users, who have probably just worked out how to install software using default settings, to configure the whole setup properly. We hope you've got all that.
Article - The Inquirer
