Especially for those who still insist upon using Internet Explorer
You actually have a 5th, hidden, security zone in your IE6 Internet Options->Security->Zones know as "My Computer". You can protect your system from yourself. Okay here's how
HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\InternetSettings\Zones\0
"Flags"=dword: 0X00000021 (33) ---default
Change to
"Flags"=dword: 0X00000001 (1)
Now reboot or logoff and back on. My Computer should now be visible in the IE Security Zones selection.
Imagine the following scenario:
You’re happily surfing the web with your Internet zone configured to disable Java script when you arrive at a site which has a malicious java script embedded into the page, no problem your settings are set up to protect you and you move on, none the wiser.
What you may not be aware of is this page, complete with malicious code, has been saved / cached in your Temporary Internet Files directory.
The next time you decide to check this site out, the first thing your browser does is check your Temporary Internet Files directory and open the page from the cache. BANG !!
This page will be opened from cache and is not being opened in the Internet Zone, but in the My Computer zone, oops!! As you have not configured the security for this zone, you are not protected and the malicious code is executed.
So I reason that the 5th zone should be enabled and all the options should be set as set in 'internet zone' for maximum security. Especially to disable the downloading of unsigned activex controls. This setting alone could have saved many people from the .chm exploits before M$ put out a fix.
MSKB on Security Zones
