|
Posted by Steven L Umbach on August 10, 2005, 9:42 pm
If you were Registered and logged in, you could reply and use other advanced thread options
The XP Security guide has an appendix for XP SP2 that covers the new Group
Policy settings for IE with explanations and recommendations. I would use
that for the guidance you are looking for at the link below with the excerpt
for MIME sniffing as an example of what it includes. --- Steve
http://www.microsoft.com/technet/security/prodtech/windowsxp/secwinxp/default.mspx
Internet Explorer Processes (MIME Sniffing)
Table A.6: MIME Sniffing Settings
Enterprise client desktop Enterprise client laptop High security
desktop High security laptop
Enabled
Enabled
Enabled
Enabled
MIME sniffing is the process of examining the content of a MIME file to
determine its context - whether it is a data file, an executable file, or
some other type of file. This policy setting determines whether Internet
Explorer MIME sniffing will prevent promotion of a file of one type to a
more dangerous file type. When set to Enabled, MIME sniffing will never
promote a file of one type to a more dangerous file type. Disabling MIME
sniffing configures Internet Explorer processes to allow a MIME sniff that
promotes a file of one type to a more dangerous file type. For example,
promoting a text file to an executable file is a dangerous promotion because
any code in the supposed text file would be executed.
MIME file-type spoofing is a potential threat to your organization. Ensuring
that these files are consistently handled helps prevent malicious file
downloads from infecting your network. Therefore, this appendix recommends
you configure this policy as Enabled for all environments specified in this
guide.
Note: This setting works in conjunction with, but does not replace, the
Consistent MIME Handling settings.
> Hello:
> I am posting to TechNet Managed Newsgroup. Mircrosoft guarantees response
> in 24 hours. I posted once already regarding diffference between Domain
> and
> Standard with no response.
>
> I was looking at what was new with SP1 on 2003 and saw settings including
> MIME Sniffing under Internet Explorer. Also Network Connections, Domain
> and
> Standard settings. Where is information on best practices and
> explainations
> of these features.
>
> Thanks in advance for your help.
| 
XML site map