Windows 9X in a Bad Neighborhood

This paper discusses security of Windows 9X machines under the control of certain registry settings and the impact of malicious code [see Notes 1] on maintaining registry setting. Specifically, it discusses the Internet Explorer registry settings. In the Windows 98 Resource Kit, Microsoft authors state 'Internet Explorer is an integrated suite of Internet software that includes a customizable browser built on open Internet standards. It delivers an Internet solution to network administrators who can customize and control their users' Web-browsing capabilities and ensure the security of their corporate Intranets.'[MT] This paper argues a contrary position in that Windows 9X machines while relatively safe in isolated LAN environments may now be inherently unsafe in the environments where Internet connectivity enhanced email and macro enhanced Office products are common. Specifically this paper argues that network administrators can no longer ensure security of their corporate Intranets by way of customizing and controlling Internet Explorer on Windows 9X machines.