For Home and Business Users The article on this page was originally published in 2002 and is therefore outdated. The ' section of the offers more recent guidance about securing your web browser. For Analysts 'Securing Your Web Browser' was published in 2002. For current guidelines about securing your web browser against Java vulnerabilities, read the following posts on the: • • • • Browse our for other related topics, or of the. Securing Your Web Browser (Published 2002) Will Dormann and Jason Rafail This paper will help you configure your web browser for safer internet surfing. It is written for home computer users, students, small business workers, and any other person who works with limited Information Technology (IT) support and broadband (cable modem, DSL) or dial-up connectivity. Although the information in this document may be applicable to users with formal IT support as well, organizational IT policies should supersede these recommendations. ![]() ![]() ![]() ![]() If you are responsible for IT policies for your organization, please consider implementing these recommendations as part of your policy. • • • • • • • • • • • • • • I. Why Secure Your Web Browser?Today, web browsers such as Internet Explorer, Mozilla Firefox, and Apple Safari (to name a few), are installed on almost all computers. Because web browsers are used so frequently, it is vital to configure them securely. Often, the web browser that comes with an operating system is not set up in a secure default configuration. Not securing your web browser can lead quickly to a variety of computer problems caused by anything from spyware being installed without your knowledge to intruders taking control of your computer. Ideally, computer users should evaluate the risks from the software they use. Many computers are sold with software already loaded. Whether installed by a computer manufacturer, operating system maker, Internet Service Provider, or by a retail store, the first step in assessing the vulnerability of your computer is to find out what software is installed and how one program will interact with another. Unfortunately, it is not practical for most people to perform this level of analysis. There is an increasing threat from software attacks that take advantage of vulnerable web browsers. We have observed a trend whereby new software vulnerabilities are exploited and directed at web browsers through use of compromised or malicious web sites. This problem is made worse by a number of factors, including the following: • Many users have a tendency to click on links without considering the risks of their actions. • Web page addresses can be disguised or take you to an unexpected site. • Many web browsers are configured to provide increased functionality at the cost of decreased security. • New security vulnerabilities may have been discovered since the software was configured and packaged by the manufacturer. • Computer systems and software packages may be bundled with additional software, which increases the number of vulnerabilities that may be attacked. • Third-party software may not have a mechanism for receiving security updates. • Many web sites require that users enable certain features or install more software, putting the computer at additional risk. • Many users do not know how to configure their web browsers securely. • Many users are unwilling to enable or disable functionality as required to secure their web browser. As a result, exploiting vulnerabilities in web browsers has become a popular way for attackers to compromise computer systems. In addition to following this paper's recommendations, refer to the documentation in the section for other steps you can take to secure your system. Web Browser Features and RisksIt is important to understand the functionality and features of the web browser you use. Enabling some web browser features may lower security. Often, vendors will enable features by default to improve the computing experience, but these features may end up increasing the risk to the computer. Attackers focus on exploiting client-side systems (your computer) through various vulnerabilities.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
April 2018
Categories |