Some Advice Please

Much obliged for your clarification, Job.
Personally I never had any problems with my choices, but being alerted this
way, I changed them accordingly.
Thanks to all.

Harry.


"Job" wrote in message
...
Harry I assume there was a question for me. A couple of
years ago, based on some security advice, I selected some
settings in my system that resulted in getting messages
(while surfing) that an ActiveX and/or a Script was trying
to access my system and did I want to allow this.

I recently switched from a Dial Up to a DSL ISP. When
Verizon's Tech Support was helping me set this service up
they had me reset some items to their default settings.
Subsequently I noticed I was no longer getting the ActiveX
and Script messages. In addition I was seeing more pop ads
than I had previously.

My trying to get back into a more secure environment is what
prompted my question.

Job says, "You don't need a parachute to skydive. You only
need a parachute to skydive twice."


"webster72n" wrote in message
...

Noel:
I value, respect and appreciate your opinion here, but why
give people a
choice, when it is so detrimental?
I enabled install on demand for the simple reason, to be
able to use this
feature at all (so I thought).
Good thing Job brought this issue up. Wonder what
motivated him to do so?
Thanks for the corrective intervention.

Harry.


"Noel Paton" wrote in
message
...
WRONG!
The settings you recommend are very insecure, Harry!!
The general recommendation is to disable both 'Install
on Demand'
settings -
on the basis that a hostile website could force a
download in the
background
without your noticing.
As for 'automatically check for IE updates', this
setting is redundant if
you use the Auto-update features of WinME - you will be
notified of any
critical updates, and should anyhow go to Windows
Updates regularly to
check
for other possible updates (and I've never seen an
update come through
this
route anyhow). My recommendation for this is also to
disable it.

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post
messages to NG's
"webster72n" wrote in message
...

Job:
I found it advantageous to have all three checked.
You definitely want to have install on demand enabled.
You'll be the judge.

Harry.


"Job" wrote in message
...
Under Internet ExplorerToolsInternet
OptionsAdvanced Tab
Should the following items be checked or unchecked?
Automatically check for Internet Explorer updates.
Enable Install On Demand (Internet Explorer)
Enable Install On Demand (Other)

Thank you.

Digest the info, Job and before implementing?
Better make sure you have an empty stomach and think twice, before
implementing, unless you have some spare brains you don't know what to do
with.
Something else might do better than ambiguity.

Harry.


"Job" wrote in message
...
Silj, thanks for the link. I have printed it out and now
need to digest the info before implementing. I've also just
become aware of the MVPS Host at
http://mvps.org/winhelp2002/hosts.htm.

This appears to be a good thing but I need to read more.
Right now I don't have any idea of what a "Host File" is nor
why I should care g.

Job says, "Give me ambiguity or give me something else."


"siljaline" wrote in message
...
"Job" wrote:
Thanks for your response.

Your most welcome.

If you would like "harden" IE's Security, try these
settings;
http://www.mvps.org/winhelp2002/restricted.htm#Setting

Works for me - very well.

Regards,
Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

Reply to group, as return address
is invalid that we may all benefit.

Harry
this is a hangover from the IE (x - pick a number from 1 to 6) days -
unfortunately, it would seem to be continued henceforth as well - where the
user of the system was thought (and in practice - although by later
experience id NOT) to have total authorised use of the system. You have to
remember that malware writers have learned a lot - and that MS is always
going to be on the defensive (as will any other major OS writer) and that
the primary job of any PC user needs to be to retain the control with which
they were invested when the system was first installed.
Some of MS's decisions along the way have ( and will probably continue to
be) come home to roost - and we are all paying the price for this (but MS is
not alone in this process - just the obvious target for it!).
set your preferences so that you have control, and keep a weather-eye out
for problems therefrom!

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to NG's
"webster72n" wrote in message
...

Noel:
I value, respect and appreciate your opinion here, but why give people a
choice, when it is so detrimental?
I enabled install on demand for the simple reason, to be able to use this
feature at all (so I thought).
Good thing Job brought this issue up. Wonder what motivated him to do so?
Thanks for the corrective intervention.

Harry.


"Noel Paton" wrote in message
...
WRONG!
The settings you recommend are very insecure, Harry!!
The general recommendation is to disable both 'Install on Demand'
settings -
on the basis that a hostile website could force a download in the
background
without your noticing.
As for 'automatically check for IE updates', this setting is redundant if
you use the Auto-update features of WinME - you will be notified of any
critical updates, and should anyhow go to Windows Updates regularly to
check
for other possible updates (and I've never seen an update come through
this
route anyhow). My recommendation for this is also to disable it.

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to NG's
"webster72n" wrote in message
...

Job:
I found it advantageous to have all three checked.
You definitely want to have install on demand enabled.
You'll be the judge.

Harry.


"Job" wrote in message
...
Under Internet ExplorerToolsInternet OptionsAdvanced Tab
Should the following items be checked or unchecked?
Automatically check for Internet Explorer updates.
Enable Install On Demand (Internet Explorer)
Enable Install On Demand (Other)

Thank you.

Noel:
Appreciate you taking the time, to give me such detailed explanation. By the
same token it will give others, who might read this with interest, a better
understanding of what's going on also. It pays to know.
Thanks.

Harry.


"Noel Paton" wrote in message
...
Harry
this is a hangover from the IE (x - pick a number from 1 to 6) days -
unfortunately, it would seem to be continued henceforth as well - where
the
user of the system was thought (and in practice - although by later
experience id NOT) to have total authorised use of the system. You have
to
remember that malware writers have learned a lot - and that MS is always
going to be on the defensive (as will any other major OS writer) and that
the primary job of any PC user needs to be to retain the control with
which
they were invested when the system was first installed.
Some of MS's decisions along the way have ( and will probably continue to
be) come home to roost - and we are all paying the price for this (but MS
is
not alone in this process - just the obvious target for it!).
set your preferences so that you have control, and keep a weather-eye out
for problems therefrom!

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to NG's
"webster72n" wrote in message
...

Noel:
I value, respect and appreciate your opinion here, but why give people a
choice, when it is so detrimental?
I enabled install on demand for the simple reason, to be able to use
this
feature at all (so I thought).
Good thing Job brought this issue up. Wonder what motivated him to do
so?
Thanks for the corrective intervention.

Harry.


"Noel Paton" wrote in message
...
WRONG!
The settings you recommend are very insecure, Harry!!
The general recommendation is to disable both 'Install on Demand'
settings -
on the basis that a hostile website could force a download in the
background
without your noticing.
As for 'automatically check for IE updates', this setting is redundant
if
you use the Auto-update features of WinME - you will be notified of any
critical updates, and should anyhow go to Windows Updates regularly to
check
for other possible updates (and I've never seen an update come through
this
route anyhow). My recommendation for this is also to disable it.

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to
NG's
"webster72n" wrote in message
...

Job:
I found it advantageous to have all three checked.
You definitely want to have install on demand enabled.
You'll be the judge.

Harry.


"Job" wrote in message
...
Under Internet ExplorerToolsInternet OptionsAdvanced Tab
Should the following items be checked or unchecked?
Automatically check for Internet Explorer updates.
Enable Install On Demand (Internet Explorer)
Enable Install On Demand (Other)

Thank you.

YW, Harry - your question was actually a good one, as it forced me to think
about WHY I was recommending the settings, rather than just parroting them!


--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to NG's
"webster72n" wrote in message
...
Noel:
Appreciate you taking the time, to give me such detailed explanation. By
the
same token it will give others, who might read this with interest, a
better
understanding of what's going on also. It pays to know.
Thanks.

Harry.


"Noel Paton" wrote in message
...
Harry
this is a hangover from the IE (x - pick a number from 1 to 6) days -
unfortunately, it would seem to be continued henceforth as well - where
the
user of the system was thought (and in practice - although by later
experience id NOT) to have total authorised use of the system. You have
to
remember that malware writers have learned a lot - and that MS is always
going to be on the defensive (as will any other major OS writer) and that
the primary job of any PC user needs to be to retain the control with
which
they were invested when the system was first installed.
Some of MS's decisions along the way have ( and will probably continue to
be) come home to roost - and we are all paying the price for this (but MS
is
not alone in this process - just the obvious target for it!).
set your preferences so that you have control, and keep a weather-eye out
for problems therefrom!

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to NG's
"webster72n" wrote in message
...

Noel:
I value, respect and appreciate your opinion here, but why give people
a
choice, when it is so detrimental?
I enabled install on demand for the simple reason, to be able to use
this
feature at all (so I thought).
Good thing Job brought this issue up. Wonder what motivated him to do
so?
Thanks for the corrective intervention.

Harry.


"Noel Paton" wrote in message
...
WRONG!
The settings you recommend are very insecure, Harry!!
The general recommendation is to disable both 'Install on Demand'
settings -
on the basis that a hostile website could force a download in the
background
without your noticing.
As for 'automatically check for IE updates', this setting is redundant
if
you use the Auto-update features of WinME - you will be notified of
any
critical updates, and should anyhow go to Windows Updates regularly to
check
for other possible updates (and I've never seen an update come through
this
route anyhow). My recommendation for this is also to disable it.

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to
NG's
"webster72n" wrote in message
...

Job:
I found it advantageous to have all three checked.
You definitely want to have install on demand enabled.
You'll be the judge.

Harry.


"Job" wrote in message
...
Under Internet ExplorerToolsInternet OptionsAdvanced Tab
Should the following items be checked or unchecked?
Automatically check for Internet Explorer updates.
Enable Install On Demand (Internet Explorer)
Enable Install On Demand (Other)

Thank you.

"Job" wrote:
Silj, thanks for the link. I have printed it out and now
need to digest the info before implementing. I've also just
become aware of the MVPS Host at
http://mvps.org/winhelp2002/hosts.htm.

This appears to be a good thing but I need to read more.
Right now I don't have any idea of what a "Host File" is nor
why I should care g.

Your welcome for the link.
http://www.mvps.org/winhelp2002/restricted.htm#Setting
*This* HOSTS file is practically a necessity these days.
All the information is in the link and FAQ.
http://www.mvps.org/winhelp2002/hostsfaq.htm

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

Reply to group, as return address
is invalid that we may all benefit.

"I ain't never used a HOSTS file yet!!" - and I really see no need to,
unless you're in the habit of going to 'dodgy' sites!
Having said that, I do consider essential for those who are in the early
stages of their computer-competence exams.

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to NG's
"siljaline" wrote in message
...
"Job" wrote:
Silj, thanks for the link. I have printed it out and now
need to digest the info before implementing. I've also just
become aware of the MVPS Host at
http://mvps.org/winhelp2002/hosts.htm.

This appears to be a good thing but I need to read more.
Right now I don't have any idea of what a "Host File" is nor
why I should care g.

Your welcome for the link.
http://www.mvps.org/winhelp2002/restricted.htm#Setting
*This* HOSTS file is practically a necessity these days.
All the information is in the link and FAQ.
http://www.mvps.org/winhelp2002/hostsfaq.htm

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

Reply to group, as return address
is invalid that we may all benefit.

I just realised that may have come across as incredibly arrogant! - believe
me, I'm still learning!! (may have passed the stage I exams - more to learn
before I get the certificate!)

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to NG's
"Noel Paton" wrote in message
...
"I ain't never used a HOSTS file yet!!" - and I really see no need to,
unless you're in the habit of going to 'dodgy' sites!
Having said that, I do consider essential for those who are in the early
stages of their computer-competence exams.

--
Noel Paton (MS-MVP 2002-2006, Windows)

Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm

http://tinyurl.com/6oztj

Please read http://dts-l.org/goodpost.htm on how to post messages to NG's
"siljaline" wrote in message
...
"Job" wrote:
Silj, thanks for the link. I have printed it out and now
need to digest the info before implementing. I've also just
become aware of the MVPS Host at
http://mvps.org/winhelp2002/hosts.htm.

This appears to be a good thing but I need to read more.
Right now I don't have any idea of what a "Host File" is nor
why I should care g.

Your welcome for the link.
http://www.mvps.org/winhelp2002/restricted.htm#Setting
*This* HOSTS file is practically a necessity these days.
All the information is in the link and FAQ.
http://www.mvps.org/winhelp2002/hostsfaq.htm

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

Reply to group, as return address
is invalid that we may all benefit.

"Noel Paton" wrote:
I just realised that may have come across as incredibly arrogant! - believe me, I'm
still learning!! (may have passed the stage I exams - more to learn before I get
the certificate!)

No worries, Noel - I consider running a HOSTS file a Security requisite these
days, regardless of where you surf.
I don't surf doggy sites deliberately *but* in case I run across a URL where I
shouldn't go, Mike's file is there to protect you :-)

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

Reply to group, as return address
is invalid that we may all benefit.

"DOGGY SITES"????

SICK PUPPY!! ROFL!!

"siljaline" wrote in message
...
"Noel Paton" wrote:
I just realised that may have come across as incredibly arrogant! -
believe me, I'm still learning!! (may have passed the stage I exams -
more to learn before I get the certificate!)

No worries, Noel - I consider running a HOSTS file a Security
requisite these
days, regardless of where you surf.
I don't surf doggy sites deliberately *but* in case I run across a URL
where I
shouldn't go, Mike's file is there to protect you :-)

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

Reply to group, as return address
is invalid that we may all benefit.