Notepad popups

Discussion in 'Computer Security' started by YK, Aug 8, 2003.

  1. YK

    YK Guest

    "Do Notepad popups represent a security risk or are they simply another way
    for spammers and marketers to annoy us? Because of a design flaw in Internet
    Explorer, Notepad popup windows can be displayed from an HTML email message
    or Web page regardless of browser security settings. In addition, Notepad
    popups can access files on a hard disk, possibly causing stability
    problems in a Windows system."

    http://www.computerbytesman.com/security/notepadpopups.htm

    The link will automatically open an example pop-up if you're using IE.
     
    YK, Aug 8, 2003
    #1
    1. Advertising

  2. YK

    donut Guest

    "YK" <> wrote in
    news:MFPYa.88535$:

    > "Do Notepad popups represent a security risk or are they simply
    > another way for spammers and marketers to annoy us? Because of a
    > design flaw in Internet Explorer, Notepad popup windows can be
    > displayed from an HTML email message or Web page regardless of browser
    > security settings. In addition, Notepad popups can access files on a
    > hard disk, possibly causing stability problems in a Windows system."
    >
    > http://www.computerbytesman.com/security/notepadpopups.htm
    >
    > The link will automatically open an example pop-up if you're using IE.



    Another argument for not using IE, or any Microsoft application, if
    possible.
     
    donut, Aug 8, 2003
    #2
    1. Advertising

  3. YK

    dkg_ctc Guest

    donut <> wrote in
    news:Xns93D15AFA16BC9donut@216.102.43.227:

    > "YK" <> wrote in
    > news:MFPYa.88535$:

    *snip*
    >> http://www.computerbytesman.com/security/notepadpopups.htm
    >>
    >> The link will automatically open an example pop-up if you're
    >> using IE.

    >
    >
    > Another argument for not using IE, or any Microsoft application,
    > if possible.


    Because everyone knows how dangerous it is to open a file in Notepad...
     
    dkg_ctc, Aug 8, 2003
    #3
  4. YK

    mto Guest

    "YK" <> wrote in message
    news:MFPYa.88535$...
    > "Do Notepad popups represent a security risk or are they simply another

    way
    > for spammers and marketers to annoy us? Because of a design flaw in

    Internet
    > Explorer, Notepad popup windows can be displayed from an HTML email

    message
    > or Web page regardless of browser security settings. In addition, Notepad
    > popups can access files on a hard disk, possibly causing stability
    > problems in a Windows system."
    >
    > http://www.computerbytesman.com/security/notepadpopups.htm
    >
    > The link will automatically open an example pop-up if you're using IE.
    >


    Not in my IE - no automatic popup at all. Got one when I clicked the link,
    but it did not automatically open.
     
    mto, Aug 8, 2003
    #4
  5. YK

    YK Guest

    mto wrote:
    > "YK" <> wrote in message
    > news:MFPYa.88535$...
    >> "Do Notepad popups represent a security risk or are they simply
    >> another way for spammers and marketers to annoy us? Because of a
    >> design flaw in Internet Explorer, Notepad popup windows can be
    >> displayed from an HTML email message or Web page regardless of
    >> browser security settings. In addition, Notepad popups can access
    >> files on a hard disk, possibly causing stability problems in a
    >> Windows system."
    >>
    >> http://www.computerbytesman.com/security/notepadpopups.htm
    >>
    >> The link will automatically open an example pop-up if you're using
    >> IE.

    >
    > Not in my IE - no automatic popup at all. Got one when I clicked the
    > link, but it did not automatically open.


    What IE settings do you have that stops this? I have the site in my
    Resricted Zone but the Notepad popup still appears.
     
    YK, Aug 8, 2003
    #5
  6. YK

    Dave Korn Guest

    "dkg_ctc" <> wrote in message
    news:Xns93D1720948B77dkgctc@130.133.1.4...
    > donut <> wrote in
    > news:Xns93D15AFA16BC9donut@216.102.43.227:
    >
    > > "YK" <> wrote in
    > > news:MFPYa.88535$:

    > *snip*
    > >> http://www.computerbytesman.com/security/notepadpopups.htm
    > >>
    > >> The link will automatically open an example pop-up if you're
    > >> using IE.

    > >
    > >
    > > Another argument for not using IE, or any Microsoft application,
    > > if possible.

    >
    > Because everyone knows how dangerous it is to open a file in Notepad...


    Well, never forget that we used to say the same about reading an email....
    until M$ got done with it, of course....


    DaveK
    --
    moderator of
    alt.talk.rec.soc.biz.news.comp.humanities.meow.misc.moderated.meow
    Burn your ID card! http://www.optional-identity.org.uk/
    Help support the campaign, copy this into your .sig!
    Proud Member of the Exclusive "I have been plonked by Davee because he
    thinks I'm interesting" List Member #<insert number here>
    Master of Many Meowing Minions
    Holder of the exhalted PF Chang's Crab Wonton Award for kook spankage above
    and beyond the call of hilarity.
    PGP Key-ID: 0x0FB504D1 Fingerprint 04B7 2E8C 0245 680E 6484 C441 CEC7 D2BD
     
    Dave Korn, Aug 8, 2003
    #6
  7. YK

    mto Guest

    "YK" <> wrote in message
    news:_HQYa.88901$...
    > mto wrote:
    > > "YK" <> wrote in message
    > > news:MFPYa.88535$...
    > >> "Do Notepad popups represent a security risk or are they simply
    > >> another way for spammers and marketers to annoy us? Because of a
    > >> design flaw in Internet Explorer, Notepad popup windows can be
    > >> displayed from an HTML email message or Web page regardless of
    > >> browser security settings. In addition, Notepad popups can access
    > >> files on a hard disk, possibly causing stability problems in a
    > >> Windows system."
    > >>
    > >> http://www.computerbytesman.com/security/notepadpopups.htm
    > >>
    > >> The link will automatically open an example pop-up if you're using
    > >> IE.

    > >
    > > Not in my IE - no automatic popup at all. Got one when I clicked the
    > > link, but it did not automatically open.

    >
    > What IE settings do you have that stops this? I have the site in my
    > Resricted Zone but the Notepad popup still appears.
    >

    Might actually be my Zone Alarm rather than the IE settings, though my IE
    settings are java off, javascript ask, cookie disallow, activeX off,
    autodownload off.
     
    mto, Aug 8, 2003
    #7
  8. YK

    Lu Tze Guest

    "YK" <> wrote in message
    news:MFPYa.88535$...
    > "Do Notepad popups represent a security risk or are they simply another

    way
    > for spammers and marketers to annoy us? Because of a design flaw in

    Internet
    > Explorer, Notepad popup windows can be displayed from an HTML email

    message
    > or Web page regardless of browser security settings. In addition, Notepad
    > popups can access files on a hard disk, possibly causing stability
    > problems in a Windows system."
    >
    > http://www.computerbytesman.com/security/notepadpopups.htm
    >
    > The link will automatically open an example pop-up if you're using IE.
    >
    >


    No popups here.
    usually use Mozilla but have moderately secure(by my standards) IE for those
    sites that need them.
    Running Spy-bot, ad-aware, proxomitron and spywareblaster plus a
    comprehensive host file.
    As I say no popups.
    --
    Lu Tze

    Whale Oil Beef Hooked.
     
    Lu Tze, Aug 8, 2003
    #8
  9. YK

    YK Guest

    Lu Tze wrote:
    > "YK" <> wrote in message
    > news:MFPYa.88535$...
    >> "Do Notepad popups represent a security risk or are they simply
    >> another way for spammers and marketers to annoy us? Because of a
    >> design flaw in Internet Explorer, Notepad popup windows can be
    >> displayed from an HTML email message or Web page regardless of
    >> browser security settings. In addition, Notepad popups can access
    >> files on a hard disk, possibly causing stability problems in a
    >> Windows system."
    >>
    >> http://www.computerbytesman.com/security/notepadpopups.htm
    >>
    >> The link will automatically open an example pop-up if you're using
    >> IE.

    >
    > No popups here.
    > usually use Mozilla but have moderately secure(by my standards) IE
    > for those sites that need them.
    > Running Spy-bot, ad-aware, proxomitron and spywareblaster plus a
    > comprehensive host file.
    > As I say no popups.


    The only difference I see is I am not running proxomitron.
     
    YK, Aug 8, 2003
    #9
  10. YK

    donut Guest

    "dkg_ctc" <> wrote in
    news:Xns93D1720948B77dkgctc@130.133.1.4:

    > Because everyone knows how dangerous it is to open a file in Notepad...


    That's not the point at all. The point is that Internet Explorer, Outlook
    Express and other M$ applications are being manipulated to do things they
    were never intended to do. Doesn't the fact that a web page, or a spammer
    can induce IE to open a Notepad window without your consent bother you at
    all?
     
    donut, Aug 9, 2003
    #10
  11. YK

    dkg_ctc Guest

    donut <> wrote in
    news:Xns93D2163D4368donut@216.102.43.227:

    > "dkg_ctc" <> wrote in
    > news:Xns93D1720948B77dkgctc@130.133.1.4:
    >
    >> Because everyone knows how dangerous it is to open a file in
    >> Notepad...

    >
    > That's not the point at all.


    Actually, it is. You're using the fact that a webpage can launch a
    document in Notepad as a reason not to use Microsoft products.

    > The point is that Internet Explorer, Outlook Express and other M$
    > applications are being manipulated to do things they were never
    > intended to do.


    Out or curiousity, how did you come to the conclusion that this
    isn't the intended behavior? Is it just that it's not the behavior
    that YOU would intend, and thus it's not the behavior anyone would
    intend?

    > Doesn't the fact that a web page, or a spammer can induce IE to
    > open a Notepad window without your consent bother you at all?


    I use Mozilla, but even if I didn't, no, this issue wouldn't
    particularly bother me.
     
    dkg_ctc, Aug 9, 2003
    #11
  12. YK

    mto Guest

    "dkg_ctc" <> wrote in message
    news:Xns93D289B48D505dkgctc@130.133.1.4...
    > donut <> wrote in
    > news:Xns93D2163D4368donut@216.102.43.227:
    >
    > > "dkg_ctc" <> wrote in
    > > news:Xns93D1720948B77dkgctc@130.133.1.4:
    > >
    > >> Because everyone knows how dangerous it is to open a file in
    > >> Notepad...

    > >
    > > That's not the point at all.

    >
    > Actually, it is. You're using the fact that a webpage can launch a
    > document in Notepad as a reason not to use Microsoft products.
    >
    > > The point is that Internet Explorer, Outlook Express and other M$
    > > applications are being manipulated to do things they were never
    > > intended to do.


    Sounds to me that this is nothing more than the same IE only http command
    that allows IE to open a pdf file or show you a graphic without an
    accompanying web page. Just so happens "marketers" have discovered it and
    are exploiting it.
     
    mto, Aug 9, 2003
    #12
  13. YK

    dkg_ctc Guest

    donut <> wrote in
    news:Xns93D27B5531DBAdonut@216.102.43.227:

    > "dkg_ctc" <> wrote in
    > news:Xns93D289B48D505dkgctc@130.133.1.4:
    >
    >> I use Mozilla, but even if I didn't, no, this issue wouldn't
    >> particularly bother me.

    >
    > Hmmm.. so why do you use Mozilla then? BTW, I do too.


    Mostly due to features that IE doesn't have, or that Mozilla handles
    in a better way. Security is also an issue, although a lesser one
    because I tend to use tight security settings when on IE.

    > The history of IE and OE is that of one security hole and flaw
    > after another.


    No argument...I just don't believe the Notepad issue described in
    this thread is one of them. There are certainly better reasons to
    not use IE than a harmless Notepad window.

    > That's why I don't use them. I also trash Windows Media Player and
    > most of the other baubles and bangles that ships with Windows. In
    > every case, there is a smaller, safer application to use.


    I don't have problems with most MS applications, and in most cases
    prefer them to the alternatives (ie, I prefer Microsoft Office to
    Star/OpenOffice, I prefer Windows Explorer to most replacement file
    managers, I prefer the Explorer shell to Litestep/GeoShell/etc). IE
    and OE are the exceptions for me, though.
     
    dkg_ctc, Aug 10, 2003
    #13
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Dave Watson

    Change .txt icon from notepad to editpad in XP Pro

    Dave Watson, Aug 16, 2003, in forum: Computer Support
    Replies:
    3
    Views:
    9,005
    °Mike°
    Aug 16, 2003
  2. MOJO

    Spell checker for use with Notepad.exe

    MOJO, Dec 2, 2003, in forum: Computer Support
    Replies:
    6
    Views:
    528
    Barry OGrady
    Dec 4, 2003
  3. Michael

    Floating Notepad

    Michael, Dec 16, 2003, in forum: Computer Support
    Replies:
    10
    Views:
    4,131
    M Mullen
    Dec 17, 2003
  4. Enforcement Team

    Notepad to PC

    Enforcement Team, Jan 31, 2004, in forum: Computer Support
    Replies:
    3
    Views:
    507
    Enforcement Team
    Feb 1, 2004
  5. Martijn
    Replies:
    21
    Views:
    1,359
Loading...

Share This Page