Friday, October 19, 2012

Chapter 7 Working with Applications


Internet Explorer (IE) - compatibility mode enables browser to display older pages properly. The broken window icon that is just to the right of the address box signals that some features on the page may not be displaying properly.  By setting the policies for Compatibility view can fix the problem. The following settings are available and detailed information is on page 229:

·         Turn on IE 7 Standards mode

·         Turn off compatibility view

·         Turn on IE standards mode for local Internet

·         Turn on Compatibility view  button

·         Include updated Web site lists from Microsoft

·         Use policy list of IE explorer sites

Add-Ons  are software components that interact with basic functions of the web browser. Details are on page 229 and can be accessed from menu bar or tools

·         Toolbars and extensions

·         Search providers

·         Accelerators

·         InPrivate Filtering

Accelerators - enable users to send content to other resources - page 234 - By enabling the Use policy accelerators, users can access only the set accelerators that are deployed through Group Policy and they are unable to add or delete Accelerators. If you use disable or not configure the Use Policy Accelerator, users will have access to any accelerators they have installed, which is what the director wants to prevent. Disable overrides enable.

·         Deploy non-default Accelerators

·         Deploy default Accelerators

·         Turn off Accelerators

·         Use Policy Accelerators

Protected mode - IE is in protected mode by default - prevents attackers from accessing important system resources by only allowing access to low integrity disk locations. Little damage can be done b/c access denied to vital system areas.

·         Cookies

·         Temporary files

·         History

Protected mode incompatibilities can be resolved by (page243):

·         Moving the site to the trusted site zone

·         Disable protected mode - this is not recommended

·         Modify the application

Security zones - different security zones available with different privileges (page 243) after assigning web sites to the different zones, the security settings of the zones can be modified, but, all the web sites in that zone will be affected (page 243):

·         Internet - sites that do not fall into the other categories

·         Local Intranet

·         Trusted sites

·         Restricted zones

Smartscreen filter - examines web page traffic for phishing activities and displays warning when detected. Smartscreen filters by (page 246):

·         Online lookup of phishing sites

·         Online lookup of download sites

·         Onsite analysis

InPrivate - can block providers from gathering information. It also prevents an administrator from being able to track where users are going.

InPrivate Filtering - prevents third party sites from gathering information about browsing practices. If InPrivate Filtering is enabled, InPrivate filtering will be disabled in all browsing sessions and in Private filtering data will not be collected.

·         Block specific providers or all from gathering information

 

 

 

No comments:

Post a Comment