NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > FOCUS-MS> 2000-q2

Subject: Re: Ways to cope with the "active content within email" issue & explanation (fwd)
From: Ben Greenbaum (bgreenbaumSECURITYFOCUS.COM)
Date: Fri May 26 2000 - 12:24:56 CDT

Next message: Alex Balayan: "RestrictAnonymous security setting and Trusted Domains"
Previous message: Felipe Szczesny Rout: "Exchange"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Forwarded to the list with author's permission:

---------- Forwarded message ----------
Date: Thu, 25 May 2000 15:46:30 -0400
From: Dmitry Manakhov <dmitry_manakhovCARYACADEMY.PVT.K12.NC.US>
To: NTBUGTRAQLISTSERV.NTBUGTRAQ.COM
Subject: Re: Ways to cope with the "active content within email" issue &
explanation

Hello people,

I used Boris' e-mail and wrote small ADM file that you can use to propagate
this policy throughout the company.
Of course this is for those who are using policy editor. Just copy the text
below and paste it to Notepad and then save it to file with extension "ADM"
You will be able to add this file to the your policy template.

;=====================================================
CLASS USER
CATEGORY "Microsoft Outlook 2000 Active Content Control"
        POLICY "Outlook Security Zones Configuration"
                KEYNAME
"Software\Microsoft\Office\9.0\Outlook\Options\General"
                PART "Set up default Outlook Security Zone (Restricted
recommended)" DROPDOWNLIST
                        VALUENAME "Security Zone"
                        ITEMLIST
                                NAME "Internet" VALUE NUMERIC 3
                                NAME "Restricted" VALUE NUMERIC 4
DEFAULT
                        END ITEMLIST

                END PART
        END POLICY
        POLICY "Disable Active scripting for Restricted Zones"
                KEYNAME "Software\Microsoft\Windows\CurrentVersion\Internet
Settings\Zones\4"
                PART "Signed ActiveX Controls Setting for Restricted Sites
zone" DROPDOWNLIST
                        VALUENAME 1405
                        ITEMLIST
                                NAME "Enabled" VALUE NUMERIC 0
                                NAME "Prompt" VALUE NUMERIC 1
                                NAME "Disabled" VALUE NUMERIC 3
DEFAULT
                        END ITEMLIST
                        #if VERSION > 1
                                NOSORT
                        #endif
                END PART
                PART "Active Scripting Setting for Restricted Sites zone
(Disabled recommended)" DROPDOWNLIST
                        VALUENAME 1400
                        ITEMLIST
                                NAME "Enabled" VALUE NUMERIC 0
                                NAME "Prompt" VALUE NUMERIC 1
                                NAME "Disabled" VALUE NUMERIC 3
DEFAULT
                        END ITEMLIST
                        #if VERSION > 1
                                NOSORT
                        #endif

END PART
END POLICY
END CATEGORY
;===========================================================================
================================

I hope it will help.

Dmitry Manakhov
Systems Engineer
Cary Academy
MCSE+I, CCA, CCNA
Phone: 919 6771946 ext. 4224

Ben Greenbaum
Director of Site Content
Security Focus
http://www.securityfocus.com

Next message: Alex Balayan: "RestrictAnonymous security setting and Trusted Domains"
Previous message: Felipe Szczesny Rout: "Exchange"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]