RE: Security flaw touches Windows Media Player, IE

["Richard M. Smith" <rms () computerbytesman com>]

I once caught an email marketing company telling people how to enable
ActiveX in Outlook and Outlook Express so that people could see their
Flash-based email messages.

Richard 

-----Original Message-----
From: Larry Seltzer [mailto:larry () larryseltzer com] 
Sent: Wednesday, October 19, 2005 1:21 PM
To: Valdis.Kletnieks () vt edu; 'Richard M. Smith'
Cc: funsec () linuxbox org
Subject: RE: [funsec] Security flaw touches Windows Media Player, IE 

> > > Not for these flaws because they requiring scripting and ActiveX to 
> > > be turned on.  Outlook and other email readers now turn off this stuff.

> Unfortunately, the software still comes with shiny clickable buttons 
> that let you turn that stuff back on.  This is important because people
> *will* click on shiny clickable buttons if promised dancing hamsters as 
> a result.

This is nonsense. It is not easy or obvious to non-experts how to change
this specific setting: 

        Tools-Options
        Security Tab
        Change the selected Zone in the list. 

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blog.ziffdavis.com/seltzer
Contributing Editor, PC Magazine
larryseltzer () ziffdavis com 

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.