go to sections menu

why the tpl and activex filtering are bad ideas from blog The Technology blog and podcast

This is for the technology blog and podcast Commentary, articles, and podcasts

header picture for Ingegno theme

You are here: general-updates-and-announcements > why the tpl and activex filtering are bad ideas

Go to Homepage, contents or to navigation menu



why the tpl and activex filtering are bad ideas

Hi all.
well well, well.
ie10 has 2 new features both of which in theory are sound enough but in reality suck.
1. tpl
the tracking protection list or tpl is in theory supposed to be able to stop sites tracking you.
at the cost however of say a site you want to track you or save a cookie like your game you want to play online or some other stuff.
there is probably a way to trust but so far havn’t found a reason to even use tpl.
Now activex filtering.
essentually it stops all activex controls running on your system whilst in internet explorer.
Fine!
this lets you control what should run on websites.
again from a security standpoint fine.
If you trust a site you can allow it from the command bar in ie.
all thats fine.
Now my gripes.
if you go to a site that is filtered and blocked there will be no notification at all that there is a filter option at least for the blind.
The other thing I dislike largely is how some of the articles were written.
The official ms article states and I quote “most activex controls are made by third parties and not by microsoft”
So I assume therefore if I was a hacker and made a trogen called it an ms addin for say xml or something that it would launch.
And can we assume that ms will block anything that is not made by it.
Who knows will it lead into oses.
I can imagine installing say jaws and finding it not working because its not narator which is used by microsoft.
In fact if you don’t have a ms program on your system they may not work because they are not microsoft.
For that reason I think all the extra security stuff in ie 10 should be disabled because microsoft clearly doesn’t want you to run anything that is not by it.
This may not be the case, but it worries me that ms can say that inosent extra filters will give you more control and all that but the fact it hints that ms stuff is all that will work is worrying.
It could also be construde with the following line
“activex controls could allow a hacker to control your system”
From that I can assume that if activex filtering is working then ms doesn’t need to release any remote updates for any hackers that get in after all with only ms software in their systems it won’t matter.
I found out how to fix it so that a site would work as it supposed to do, however the fact you are not ified worries me greatly at least for the blind there is no ding nothing.
nothing on the alt n bar.
I spent most of today reinstalling flash and almost reformatting because a notification never came up.
I can see where this site will work.
and for me, if I added the sites I used needing activex to the trusted zone and turned off filtering in that zone that would rock.
however I have no idea what sites the intel driver updaters link to as well as a few other things.
its easier to just bin that feature all together.
later all

Be Sociable, Share!

Informazioni sull'articolo

why the tpl and activex filtering are bad ideas was released on March 15, 2013 at 11:31 pm by crashmaster in general-updates-and-announcements.
Last modified: March 15, 2013.


Comments Off on why the tpl and activex filtering are bad ideas

No comments yet.

Sorry, the comment form is closed at this time.

go to sections menu


navigation menu

go to sections menu