Click here to get back home

To automatically download and install ActiveX controls
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
To automatically download and install ActiveX controls Spin 11-11-2005
Posted by Spin on November 11, 2005, 6:13 pm
Please log in for more thread options
 The ability to automatically download and install ActiveX controls means one
has to set their browser to either "Low Security", or they need to
"Customize" their current security level to allow to download and install
ActiveX controls, or add the site to their IE Trusted Sites list. Do I
understand this correctly?

--
Spin




Posted by Colin Barnhorst on November 11, 2005, 7:02 pm
Please log in for more thread options
 Yes, but is a security risk to do it that way. In IE7 there won't be any
automatic ActiveX installation permitted for that reason. It is better to
be notified about such installations.

--
Colin Barnhorst [MVP Windows - Virtual Machine]
(Reply to the group only unless otherwise requested)
> The ability to automatically download and install ActiveX controls means
> one has to set their browser to either "Low Security", or they need to
> "Customize" their current security level to allow to download and install
> ActiveX controls, or add the site to their IE Trusted Sites list. Do I
> understand this correctly?
>
> --
> Spin
>
>




Posted by Spin on November 12, 2005, 12:43 am
Please log in for more thread options
ActiveX is a security risk period. I am interested in how people manage
allowing ActiveX in IE their environments.

--
Spin

> Yes, but is a security risk to do it that way. In IE7 there won't be any
> automatic ActiveX installation permitted for that reason. It is better to
> be notified about such installations.
>
> --
> Colin Barnhorst [MVP Windows - Virtual Machine]
> (Reply to the group only unless otherwise requested)
>> The ability to automatically download and install ActiveX controls means
>> one has to set their browser to either "Low Security", or they need to
>> "Customize" their current security level to allow to download and install
>> ActiveX controls, or add the site to their IE Trusted Sites list. Do I
>> understand this correctly?
>>
>> --
>> Spin
>>
>>
>
>




Posted by Bruce Chambers on November 12, 2005, 9:05 am
Please log in for more thread options
Spin wrote:
> ActiveX is a security risk period. I am interested in how people manage
> allowing ActiveX in IE their environments.
>


        Set IE to prompt for installation, of course, and don't allow users to
run under elevated privileges, so that even if they click <Yes> nothing
happens without a knowledgeable technician checking the safety of the
control.


--

Bruce Chambers

Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html

You can have peace. Or you can have freedom. Don't ever count on having
both at once. - RAH


Posted by Spin on November 12, 2005, 2:14 pm
Please log in for more thread options
Oh that's right, I believe you have to be an administrator of a machine to
allow the installation of an ActiveX control.

--
Spin

> Spin wrote:
> Set IE to prompt for installation, of course, and don't allow users to run
> under elevated privileges, so that even if they click <Yes> nothing
> happens without a knowledgeable technician checking the safety of the
> control.




Similar ThreadsPosted
activeX controls are prohibited in Application August 9, 2005, 4:35 pm
Unable to download ActiveX Control when requesting a Certificate January 31, 2007, 12:20 pm
Administrator Approved Controls on Windows 2003 Server June 2, 2005, 9:11 am
File Download box unwanted April 19, 2006, 12:28 pm
ActiveX control fails on /certsrv/certsces.asp July 6, 2006, 1:54 pm
Need help with ActiveX Security Permissions on Server 2003 September 24, 2006, 7:12 am
Sharepoint.Opendocuments Activex Securiy error September 9, 2008, 10:55 am
Renew Certificate Automatically April 14, 2006, 7:34 pm
how to stop login credentials being passed automatically? June 23, 2006, 11:37 am
Product to Automatically Change Local Passwords? August 31, 2006, 4:07 am

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap