Two options offered by the original author :

1) The legal side

Even tho' we may expect that the U.S.A and European community adapt their laws, there'll still be many other ways for such a nice and easy business.
The Internet is a world wide open market, and killing such a nasty business in our areas will just just eventually forc 'em moving it to other places (is is it worth mentionning 'em?).

2) Switch to another browser

Sounds like a possibility. Still, if 50% of the IE users moved to 1 or 2 other browsers, then what would happen?
They'd adapt spywares to 1 or two more browsers. As long as they can get back the cash spent into spywares variants development... make sure they'll do adapt their spyware (trojans?).

3) Active X ...
Do we really need Active X? Couldn't the solution come from web site developpers.
Some newer standards should be defined.
I am myself working behind an XP pro computer set as a server (.net framework dev).
I am always testing my websites to make sure that those who apply high security restrictions (Active X, java, cookies and all) can still access all parts of my websites wihtout being bothered by IE/XP/Zone Alarm and likes security restrictions.
The cons .. I gotta forget about collecting some kinds of datas, setting up particular features.

But isn't it worth the deal? Whatever the site I run, unless you're an admin, all "shields up" users (hi grc.com) are welcome.



[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/250/27052#27052