Resumed as follow:
Warning boxes will be more user friendly, and the default settings for downloading code are automatically set to deny downloads.
When users try to download an attachment, a new text box explains in a more simple way what they need to be aware of. Hitting return will automatically refuse the download (unlike the current default settings).
An add-on control has been installed so that applications will not automatically download upgrades or plug-ins (this is to avoid the actual fact that some applications can automatically download an upgrade or plug-in, and hackers can exploit this).
The pop-up blocker has been changed to allow varying degrees of protection. Now users can choose to allow or disallow pop-up adverts, and also allow pop-ups from trusted sites (a needed feature).
As you can see, security improvements are made... now we must wait this new SP2 and see its impact on users. I'm worried about possible alerts from users that no have the cognition of all this new changes (such as "why my download don't start?", or "why I can't see popup?").
I agree to this petition started by Peter Provost and I want to support it:
I want to start a blog petition. I want everyone who agrees with me to blog the following sentence: Unit Testing support should be included with all versions of Visual Studio 2005 and not just with Team System. Please link or TrackBack to this post so I can keep track of how well this works. |
If you're interested, please do the same... I hope it could be the first success for a Blog petition! 
There's a new type of virus discovered in these days that seems to be more dangerous than what initially seems.
The virus uses a novel vector (code in web pages that seems to be an Internet Explorer vulnerability) and when visitors request a web page that includes the malicious graphics, the code automatically downloads itself onto their machines. Once installed, the code unpacks itself, loads a keystroke logger on the PC, forces the machine to contact two IP addresses (located in Russia and in the United States and then downloads some other files to the compromised machine (expecially spamming as the first infections seems to demonstrate).
Spamming atacks are always more sophisticated... 