Share this Page URL

Chapter 26. Online Security Issues > Preventing Viruses from Entering Your Syst... - Pg. 243

Online Security Issues 243 ActiveX is less secure because it places the security burden on you and relies on a system of certificates to help you determine whether the ActiveX component is safe. ActiveX components have no built-in security features that prevent the component from performing destructive acts. This makes ActiveX components powerful but poses greater risks. Before downloading and installing an ActiveX component, your Web browser displays a dialog box indicating whether the component has been certified or not. If the component has not been certified, it's up to you to cancel the download. Whoa! If you receive e-mail, you'll eventually receive virus warnings indicating that a nasty new virus is infecting thousands of computers all over the world and wiping out hard drives. Most of these warnings are hoaxes, and you should not forward the message as it instructs you to do. Check the source of the hoax first. If the message says that IBM just discovered the virus, check out IBM's Web site. Another good place to verify the integrity of a virus warning is McAfee's Virus Hoax list at Zoning in on Security In Internet Explorer As you send data and receive active content on the Web, Internet Explorer supervises both your actions and the actions of the remote server and warns you of any risky activity. You can control these warnings by using Internet Explorer's security zones. Each zone has different security settings enabling you to relax the security settings for sites that you trust and tighten security settings for untested sites or those that you don't trust. Internet Explorer offers the following four security zones: · Internet enables you to specify security settings for untested sites. When you wander off to sites that you do not frequent, you might want to tighten security. All sites that are not in one of the other zones in this list fall into the Internet zone. · Local Intranet enables you to relax security for sites on your company's intranet or network, so you can freely access those sites without being bombarded with warnings. By default, the se- curity level for local intranet sites is set at low. · Trusted sites enables you to deactivate the security warnings for sites you trust. This prevents you from being inundated with warning messages at the sites you visit most frequently. · Restricted sites enables you to create a list of sites that you do not trust and tighten security for those sites. For example, you might want to prevent a particular site from automatically installing and running programs on your computer. You can add sites to the Trusted and Restricted sites zones. To add a site to a zone, open the View or Tools menu, select Internet Options, and click the Security tab. Click the desired zone at the top of the dialog box, as shown in Figure 26.2, or open the Zone drop-down list and choose the desired zone. Click the Add Sites or Sites button and enter the desired addresses. Click OK as needed to save your changes and close the dialog boxes.