Home > Microsoft Exchange News > Best Practice #6: Disable unsigned macros
Microsoft Exchange News:
EMAIL THIS

Best Practice #6: Disable unsigned macros

By Richard Luckett
10 Aug 2005 | SearchExchange.com

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

Macros are automation tools that can perform repetitive tasks easily. All the buttons on the toolbar of a Microsoft application are essentially icons that kick off a macro when pressed. The term macro takes on a bad connotation when a malicious person writes a macro to automate (loop) a malicious task. Certain Microsoft Office applications facilitate the use of macros.

So that we can tell the good guys from the bad guys, Microsoft allows macros to be digitally signed. The digital signature is either trusted or un-trusted by your clients. It is a good idea to disable unsigned macros from running in Word and Excel, for example.

For the last few releases of Microsoft Office, this has been done by default. However, if you want to confirm that is has not been modified, open Excel, Word, etc., go to Tools -> Options -> Security and verify the radio button High is selected.


Top 10 best practices for securing e-mail clients

 Home: Introduction
 #1: Patch your clients
 #2: Configure antivirus software to scan your e-mail clients
 #3: Use anti-malware software
 #4: Quarantine attachments
 #5: Don't be a sucker
 #6: Disable unsigned macros
 #7: Use Outlook's Junk E-mail filter or install spam-filtering software
 #8: Just be plain
 #9: Learn to read (e-mail headers, that is)
 #10: Digitally sign and encrypt e-mails

ABOUT THE AUTHOR:   
Richard Luckett, Vice President and Senior Consultant, Ajettix Security
Richard Luckett is a Microsoft Certified Systems Engineer on the Windows NT 4.0, 2000 and 2003 platforms and has been certified on Exchange since version 4.0. He is the co-author of Administering Exchange 2000 Server, published by McGraw Hill, and has written four Exchange courses, Introduction to Exchange 2000, and Hands-on Exchange 2003, Ultimate Exchange Server 2003 and Exchange Server 2003 Administrator Boot Camp for Global Knowledge Inc. Richard is currently Vice President and Senior Consultant for Ajettix Security, where he is the head of the Microsoft security practice.


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



E-mail Security - Spam Filtering, Anti Virus, Password Management, Exchange Server Permissions
HomeNewsTopicsITKnowledge ExchangeTipsAsk the ExpertsMultimediaWhite PapersIT Downloads
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2004 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts