Two tips for good practices regardless of current exploits;
1. View mail in plain text only...never in HTML.
2. Disable Java plugins in all browsers.
These practices should thwart the current Java exploits.
IE Example;
Welcome to Circles Of Friends
Welcome to Circles Of Friends, like most online communities you must register to view or post in our community, but don't worry this is a simple free process that requires minimal information for you to signup. Be apart of Circles Of Friends by signing in or creating an account.
When people first meet online or in personal life, they begin to have a very ordinary kind of friendship. But when they begin to understand each other, when they get close to each other, that is when they discover that they are suddenly eager to know each other even better. Friends are those who can understand that we are not perfect and that we make mistakes and that he or she is ready to forgive. They will listen to your problems, and give advice when you can't find it in your own heart even when the truth may not be what you want to hear.
Thank you for stopping by and visiting our caring community of friends. You are invited to join and become part of our friendly group of worldwide boomers & seniors.
Circles Of Friends ~ Staff.
When people first meet online or in personal life, they begin to have a very ordinary kind of friendship. But when they begin to understand each other, when they get close to each other, that is when they discover that they are suddenly eager to know each other even better. Friends are those who can understand that we are not perfect and that we make mistakes and that he or she is ready to forgive. They will listen to your problems, and give advice when you can't find it in your own heart even when the truth may not be what you want to hear.
Thank you for stopping by and visiting our caring community of friends. You are invited to join and become part of our friendly group of worldwide boomers & seniors.
Circles Of Friends ~ Staff.
Guest Message by DevFuse
Safe Practices
Started by
mikey
, Sep 02 2012 10:13 PM
3 replies to this topic
#1
mikey
-
- Owner
- 371 posts
- Skin: Comfy 3.4.4 (Import)
Tech Support
- Location:Cen-Tex USA
-
Interests:DC Administration
Fuzzing-penetration testing
Web Services-diagnostics and forensics
Malware Delivery Methodology -
Real Name:Mike
Posted 02 September 2012 - 10:13 PM
I'll start with a couple that are extremely relevant now. You may have heard about the current Java exploit that loads an executable .jar file when visiting an infected site. The exploit is cross platform and cross browser. IOWs all systems and all browsers are vulnerable.
Two tips for good practices regardless of current exploits;
1. View mail in plain text only...never in HTML.
2. Disable Java plugins in all browsers.
These practices should thwart the current Java exploits.
IE Example;
Two tips for good practices regardless of current exploits;
1. View mail in plain text only...never in HTML.
2. Disable Java plugins in all browsers.
These practices should thwart the current Java exploits.
IE Example;
Top
#2
Ronald
-
- Owner
- 2,677 posts
- Skin: Steel Glass 3.4.4 (Import)
Owner/Administrator
- Location:Sitting at the computer moaning....
-
Real Name:Ronald
#3
mikey
-
- Owner
- 371 posts
- Skin: Comfy 3.4.4 (Import)
Tech Support
- Location:Cen-Tex USA
-
Interests:DC Administration
Fuzzing-penetration testing
Web Services-diagnostics and forensics
Malware Delivery Methodology -
Real Name:Mike
Posted 03 September 2012 - 01:28 PM
If you're needing to use an applet such as a 'chat' on a trusted site, it only takes a couple of clicks to enable temp while doing so. Of all the places I hang, there is only one site where I routinely do that.
Actually, I don't do that at all because I control Java, javascript, and ALL other content with Proxomitron. But it's not really a tool for the casual user.
Ref; http://immunityprodu...-2012-4681.html
Ref; http://www.theregist...ero_day_latest/
Actually, I don't do that at all because I control Java, javascript, and ALL other content with Proxomitron. But it's not really a tool for the casual user.
Ref; http://immunityprodu...-2012-4681.html
Ref; http://www.theregist...ero_day_latest/
#4
mikey
-
- Owner
- 371 posts
- Skin: Comfy 3.4.4 (Import)
Tech Support
- Location:Cen-Tex USA
-
Interests:DC Administration
Fuzzing-penetration testing
Web Services-diagnostics and forensics
Malware Delivery Methodology -
Real Name:Mike
Posted 24 November 2012 - 01:14 PM
Still Java; http://taosecurity.b...insecurity.html
BTW I didn't think to mention it earlier; If you guys aren't already aware, javascript and Java are two completely different entities...unrelated to each other. Disabling Java will not effect js.
while fixing some flaws, Oracle opened the door to another one.
BTW I didn't think to mention it earlier; If you guys aren't already aware, javascript and Java are two completely different entities...unrelated to each other. Disabling Java will not effect js.
