
	Home > Ask the Security Experts > Questions & Answers > Configuring access control lists

Ask The Security Expert: Questions & Answers

EMAIL THIS

Configuring access control lists

EXPERT RESPONSE FROM: Mike Chapple, featured expert

		Pose a Question

		Other Security Categories

		Meet all Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 13 February 2009
Regarding a recent IE 7 exploit, Microsoft recommends using access control lists (ACLs) to disable Ole32db.dll. What are ACLs, and how do you use it to disable Ole32db.dll? What kind of changes/effects will take place if these actions are carried out?

Also known as system access control lists, ACLs are used to specify access permissions for Windows objects to a fine degree of detail. Normally, it's unnecessary to configure ACLs directly, as Windows tools handle this "under-the-hood" work. As you pointed out, however, Microsoft issued a security advisory at the end of 2008, and the warning detailed a flaw in Internet Explorer that required disabling OLE32DB.DLL. The easiest way to do this is through an ACL.

The OLE32DB.DLL file allows programs to make use of Microsoft's ActiveX Data Objects (ADO) and Object Linking and Embedding (OLE) functionality. Fortunately, there aren't any common uses of these technologies within Internet Explorer, so disabling OLE32DB.DLL should have no adverse effect on the system.

The instructions for creating the ACL depend upon your operating system. Microsoft offers a knowledge base article that explains the step-by-step process.

BROWSE BY TAG

NAC and Endpoint Security Management, Network Access Control Basics, Enterprise Network Security, VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Network Access Control Basics
	Security vendors can learn from ConSentry Networks demise
	Best Network Access Control Products
	Perimeter defense in the era of the perimeterless network
	Network access control technology: Over-hyped or underused?
	Symantec offers endpoint protection management, monitoring services
	What is the difference between a VPN and remote control?
	Quiz: Endpoint security on a budget
	Opinion: Gartner gets NAC wrong, again
	What security software should be installed on Internet café computers?
	What are the best network security books?

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

Kerberos (SearchSecurity.com)

masquerade (SearchSecurity.com)

phreak (SearchSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Find Security Solutions for Your Business

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy