|
Perhaps the easiest way to avoid many of the security problems and vulnerabilities
that plagued earlier versions of Internet Explorer and Outlook Express
is to upgrade to Internet Explorer and Outlook Express 6 and then install
the latest updates.
The easiest way to upgrade to Internet Explorer 6 and Outlook Express
6 is by downloading and installing the upgrade file from Microsoft (the
upgrade for Internet Explorer also upgrades Outlook Express). To do this,
use your current version of Internet Explorer to visit the Microsoft home
page for Internet Explorer at:
http://www.microsoft.com/downloads/Search.aspx?displaylang=en
Follow the instructions on the web
page to download and install Internet Explorer 6. If you previously
used Internet Explorer as your web browser or Outlook Express as your email
client, the upgrade will not affect any settings, bookmarks, or email that
you have (although you will be directed to a Microsoft web page the first
time you use IE). Please note that you will be forced to restart
your computer once the upgrade is finished.
Once you have upgraded, you will want to download and install the
latest updates--even though these programs do not suffer from the
well-known security
flaws in earlier versions, new flaws are discovered from time-to-time.
Currently, the best place to go on Microsoft's website to update IE and
Outlook Express and keep informed about IE 6.x security issues is at:
http://www.microsoft.com/security/default.mspx
Once you've installed any needed updates, use the following
recommendations to further enhance your Internet Explorer and Outlook
Express security:
-
Change your Windows settings so that
file extensions are visible.
-
One file extension that remains invisible no matter
what you do is the .shs file extension. The
Stages worm used this fact to disguise itself as a
harmless text file. The best way to protect yourself
from viruses with the .shs extension is to
remove the .shs file extension.
-
To further increase your security from Visual Basic
Scripting viruses (.vbs) viruses like the LoveLetter virus
of May 4, 2000, you have the option of removing or
disabling the Windows Scripting Host program that allows
those viruses to activate. WE STRONGLY RECOMMEND that you
consult your local IT staff about this option before
proceeding, as they may be aware of specific reasons why
your computer requires Windows Scripting Host. Instructions
for uninstalling or disabling Windows Scripting Host on all
Windows platforms is available from Sophos' Disabling
Windows Scripting Host web page.
|
