IE 8 publicly hacked as IE9 is released

Topic

New Reply

	IN THE WILD[/size][/font] IE 8 publicly hacked as IE9 is released[/size]
	By Robert Vamosi At this year’s Pwn2Own browser-hacking competition, a component of the CanSecWest security conference, clever new exploits took down Internet Explorer 8. Released just days later, Internet Explorer 9 is immune — and offers additional security enhancements.[/size]

---

The full text of this column is posted at WindowsSecrets.com/2011/03/17/07 (paid content, opens in a new window/tab).

Columnists typically cannot reply to comments here, but do incorporate the best tips into future columns.[/td]

[/tr][/tbl]

Reply | Quote

Replies

I turned on Active X filtering in IE9 and when I went to look at my Gmail box I was told that Gmail needs Active X filtering turned off. Not quite those words but you get the idea. So much for that security feature.

Reply | Quote

Isn’t one’s physical location trivially derivable from one’s IP address regardless of whether one has “geolocation” enabled or not?

Reply | Quote

Isn’t one’s physical location trivially derivable from one’s IP address regardless of whether one has “geolocation” enabled or not?

Not necessarily. Depends on your ISP – where they are located & how they assign IP addresses.

Joe

--Joe

Reply | Quote

Isn’t one’s physical location trivially derivable from one’s IP address regardless of whether one has “geolocation” enabled or not?

Not if you use a DNS Service, like Comodo DNS or Open DNS. These redirect traffic through their own servers, obscuring your true IP Address. Very effective, but some sites don’t like it. Also, stealth all your ports and no one can see your IP Address.

-- rc primak

Reply | Quote

stealth all your ports and no one can see your IP Address.

Warning! This is NOT TRUE!

With a regular internet connection (cable), Steve Gibson’s Shields up reports my NAT-router and my computer behind it fully stealthed, but still exactly reports my IP address.

But when I connect through Vypr Virtual Private Network, then my IP is effectively hidden for everybody else (Shields Up reports the Vypr server’s IP).

Don’t take my word for it. Test it.

Reply | Quote

Warning! This is NOT TRUE!

With a regular internet connection (cable), Steve Gibson’s Shields up reports my NAT-router and my computer behind it fully stealthed, but still exactly reports my IP address.

But when I connect through Vypr Virtual Private Network, then my IP is effectively hidden for everybody else (Shields Up reports the Vypr server’s IP).

Don’t take my word for it. Test it.

Apparently, you do not understand what stealthing ports means. Because, when Comodo Firewall stealths ports (also true of Zone alarm), Steve Gibson’s test site does not find the real IP Address in my tests.

-- rc primak

Reply | Quote