[Previous] [Table of Contents] [Next]

Concluding Remarks

The strategies mentioned in this appendix should help you prevent the infection of a system by common scripting viruses until Microsoft releases a WSH version that executes only signatured script files.

I should also mention a second concern: security settings in Microsoft Internet Explorer. If script execution is allowed within HTML pages loaded from the Internet, a virus in the form of script code within the HTML document can infect your system. And this virus can use the CreateObject method to access WSH methods without using WScript.exe or CScript.exe. You can prevent this situation by disabling script execution in HTML documents viewed from Internet sites. You can apply similar strategies in Microsoft Outlook to disable script executing within HTML pages (sent as e-mail). It's also a good idea to download and install the most recent security patches for Outlook from Microsoft's Web site (http://officeupdate.microsoft.com).

Keep in mind that system security isn't only the task of the operating system and software developers. The main responsibility falls on administrators and users. If a user logs on with Administrator rights and if no security settings are set, all doors are open (as in the Linux operating system when users log on as root). You can also benefit from using a good virus scanner.