Bugtraq mailing list archives
Re: More Internet Explorer zone confusion
From: jimf () FROSTBYTES COM (Jim Frost)
Date: Tue, 9 Mar 1999 17:15:07 -0500
|This is of course the correct way to implement an "intranet zone". |It has, however, one serious drawback: you have to configure it. |Consumer product manufacturers like Microsoft want their product |to work as much "out of the box" as possible. Since there is no intranet for most consumers this seems like largely a non-issue. Those with intranets in their home probably know enough to configure it properly. And businesses should have IT departments whose job it is to manage it. So what's the problem? |It doesn't even work with the default configuration of Windows, |because the basic assumption that every host with an FQDN in the |same DNS domain as the client is also in the intranet zone is |flawed. There are perfectly legitimate configurations where this |is not the case. Not only legitimate, but increasingly common. Cable modem customers, for instance, tend to have their entire region in the same "intranet": eg customer.ne.mediaone.net. I assure you that you don't want to treat the entire northeast region of MediaOne customers as trusted in any way, shape, or form. jim
Current thread:
- Re: Digital Unix 4 protected password database., (continued)
- Re: Digital Unix 4 protected password database. Solar Designer (Mar 13)
- Default password in Bay Networks switches. Jan B. Koum (Mar 10)
- Re: Default password in Bay Networks switches. Dax Kelson (Mar 10)
- Re: Default password in Bay Networks switches. Dax Kelson (Mar 10)
- Re: Default password in Bay Networks switches. Igor Sviridov (Mar 11)
- Re: Default password in Bay Networks switches. Rolf Obrecht (Mar 12)
- Re: The FPSC-IRCD.txt advisory Bjarni R. Einarsson (Mar 09)
- Windows NT Screen Saver Vulnerability Aleph One (Mar 09)
- 64 bit Solaris 7 procfs bug Toomas Soome (Mar 09)
- Re: More Internet Explorer zone confusion Jim Frost (Mar 09)
- Re: More Internet Explorer zone confusion Christopher Masto (Mar 08)