I noticed the post from DB earlier this week regarding the IE exploit, and I became intrigued.
First off, which exploit are we talking about? Microsoft enumerates them for reference, so I am confused which one this stops (or blocks). Second, I'm very interested to know that an ACL can be created to block an exploit, but the line described was incredibly simple ("\%01\" or something like that). What exactly is being blocked in such a small line? Thanks. I don't mind adding things to my ACLs, but I'd love to know what I'm doing in the process. And if I totally got the context wrong, you guys can beat me up. Eric Geater Network Administrator MSCO, Inc. 731-935-8538 731-431-3742 egeater at mscoinc dot com