Aces High Bulletin Board
General Forums => Hardware and Software => Topic started by: eagl on April 09, 2011, 02:26:58 PM
-
Anyone try the new msie? Google chrome can't be trusted to not cache passwords and stuff (no way to turn that stuff off or manage cache settings, etc) so I still use msie for stuff where security is important. So don't bother trying to tell me to use another browser, msie works just fine and has settings so I can tell it to not cache secure pages, flush the cache on shutdown, not keep login credentials, etc., and that works fine.
So the question is, how is the new msie? I've seen some incompatibility issues with some online forums so I'm holding off until I hear some positive reports. Thanks in advance!
-
Been using it for a couple weeks now----not 1 single issue.
Its ALOT faster than the old one.
Enjoy.
-
I am a fan of LastPass for password management. Read up on it and see if it can do what you want:
http://lastpass.com/
Else: Im using MSIE now and no worries. Its a bit different but they certainly brought it up to date with the 'other' browsers.
-
I am assuming ya'll are refering to MS IE 9 ????
-
I would say thats a fair assumption since he used the word 'new.' :D
-
Anyone try the new msie? Google chrome can't be trusted to not cache passwords and stuff (no way to turn that stuff off or manage cache settings, etc) so I still use msie for stuff where security is important. So don't bother trying to tell me to use another browser, msie works just fine and has settings so I can tell it to not cache secure pages, flush the cache on shutdown, not keep login credentials, etc., and that works fine.
So the question is, how is the new msie? I've seen some incompatibility issues with some online forums so I'm holding off until I hear some positive reports. Thanks in advance!
Heh you're worried about password cache and open yourself to activex and 0-day exploits galore? Mmkay. :)
-
A lot of people are complaining that the drop down portion of the address bar that shows addresses you have typed before is broken.
-
Heh you're worried about password cache and open yourself to activex and 0-day exploits galore? Mmkay. :)
I can handle external threats. I'm set up to deal with those. My primary risk is someone walking away with my laptop, so passwords, encryption, and browsers not caching my bank logins are important to me.
I almost got caught with a click-through attack about a year ago when I was really tired, but that's the only time I've been seriously threatened by any of the gazillion msie exploits everyone worries about. The only time my computer has been completely compromised in the last 8 years was the sony rootkit. Every other attack I've had was either defeated trivially or was a problem only because I clicked on something I wouldn't have clicked on if I wasn't exhausted at the time.
The biggest actual threats I've faced were a burglary where the robbers had full access to my house and 3 computers (my desktop, my laptop, and my wife's laptop) for about 4 hours, and a recent incident where someone attempted to hijack a browser session shortly after I arrived in Iraq. They apparently got one of my bank usernames but didn't get the password correct so all they did was lock my account. So again, my biggest threats are people accessing my security information via physical access to my computer or from a badly behaved browser giving away the info by pre-filling in usernames and passwords to random web sites (what chrome seems to be doing). MSIE simply doesn't DO that, and it has several security settings to explicitly prohibit caching of encrypted pages, delete browser cache on exit, etc. Chrome doesn't have any settings at all like that except a setting that doesn't work that has something to do with not saving login info. I've set that to off, but it still pre-fills some logins so I can't trust chrome with anything important.
-
Been using it for a couple weeks now----not 1 single issue.
Its ALOT faster than the old one.
Enjoy.
Thanks for the straight answer. I'll probably give it until the weekend after patch Tuesday and then install.
-
I've been using it for 2 weeks or longer. No issues here.
Windows Vista 32-Bit
Coogan
-
I can handle external threats. I'm set up to deal with those. My primary risk is someone walking away with my laptop, so passwords, encryption, and browsers not caching my bank logins are important to me.
I almost got caught with a click-through attack about a year ago when I was really tired, but that's the only time I've been seriously threatened by any of the gazillion msie exploits everyone worries about. The only time my computer has been completely compromised in the last 8 years was the sony rootkit. Every other attack I've had was either defeated trivially or was a problem only because I clicked on something I wouldn't have clicked on if I wasn't exhausted at the time.
The biggest actual threats I've faced were a burglary where the robbers had full access to my house and 3 computers (my desktop, my laptop, and my wife's laptop) for about 4 hours, and a recent incident where someone attempted to hijack a browser session shortly after I arrived in Iraq. They apparently got one of my bank usernames but didn't get the password correct so all they did was lock my account. So again, my biggest threats are people accessing my security information via physical access to my computer or from a badly behaved browser giving away the info by pre-filling in usernames and passwords to random web sites (what chrome seems to be doing). MSIE simply doesn't DO that, and it has several security settings to explicitly prohibit caching of encrypted pages, delete browser cache on exit, etc. Chrome doesn't have any settings at all like that except a setting that doesn't work that has something to do with not saving login info. I've set that to off, but it still pre-fills some logins so I can't trust chrome with anything important.
Then what happened to your bitlocker? Why should you worry about stolen laptops and password caches when your Win7 enterprise obviously should have everything encrypted?
-
Heh you're worried about password cache and open yourself to activex and 0-day exploits galore? Mmkay. :)
You can disable ActiveX, or set it to prompt as well, or just stop the ones that are not signed and so on. Anyone running any version of IE using the default security installation gets what they deserve. Oh, by the way, the default security for IE is also the default for the entire computer.
-
You can disable ActiveX, or set it to prompt as well, or just stop the ones that are not signed and so on. Anyone running any version of IE using the default security installation gets what they deserve. Oh, by the way, the default security for IE is also the default for the entire computer.
One notable thing is also that leaving your IE security open will enable attackers to do cross browser attacks where they exploit activex through an another browser. So whether you use IE or not, it should be locked down.
-
One notable thing is also that leaving your IE security open will enable attackers to do cross browser attacks where they exploit activex through an another browser. So whether you use IE or not, it should be locked down.
Yep.
-
I was actually under the impression that using the activex kill bit wasn't enough - you had to remove the whole libraries. I did a quick check but couldn't find evidence for that memory however.
-
I was actually under the impression that using the activex kill bit wasn't enough - you had to remove the whole libraries. I did a quick check but couldn't find evidence for that memory however.
You have to kill it in all zones and make sure you do not allow applications to cross into other zones.
-
Forgot to mention that I was using MSIE for a couple months b4 my PC
was infected with the "Google Redirect Virus", upon checking, MSIE was turned off (Red in Color). I wasn't able to turn it back on & developed
myriads of probs with the virus, no idea how the virus got through!
-
eagl,
i second using lastpass. keeps the passwords and stuff out of msie, firefox and such. storage is encrypted and you can set it up using a dongle for access as well.
shdo
p.s. still driving the 15e's? check 6