• Internet Explorer has implemented a mechanism to block download / installation of specific signed binaries based on their hash. Hashes are stored under HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\Restriction Policies\Hashes.

• Administrators can use the Administrator Approved Controls feature to provide a list of specific controls that will run.

Is there an easy way for users to block ActiveX controls in Internet Explorer without setting a Kill-Bit?

Yes, the Add-on Manager in XP SP2 and above allows users to easily disable specific ActiveX controls in Internet Explorer. It’s worth mentioning though that this is not technically equivalent to setting a Kill-Bit. So for example, Windows applications that respect the Kill-Bit to block ActiveX controls may or may not respect the Add-on Manager settings.

- Security Vulnerability Research & Defense Bloggers

*Postings are provided "AS IS" with no warranties, and confers no rights.*

(责任编辑：admin)

• ·注册ActiveX控件的几种方法
• ·在Access2003或以上版本使用RichTX32.O
• ·快速注册DLL和OCX的方法【技巧】
• ·Access的Treeview在 MS10-036 更新后无
• ·在安全补丁Security Advisory 960715
• ·Access2010使用Treeview出现问题的解决
• ·Access中使用TreeView 树形控件 详细讲
• ·Access中treeview不能使用或提示没有版
• ·The Kill-Bit FAQ: Part 3 of 3
• ·The Kill-Bit FAQ: Part 2 of 3
• ·The Kill-Bit FAQ: Part 1 of 3
• ·ACCESS EXCEL 一个增强Treeview 节点编
• ·windows 7或其它windows 64位系统里Tre
• ·Access Treeview 树控件MSCOMCTL.OCX
• ·[技巧]如何导出Imagelist的图标或图片
• ·Access中使用身份证读卡器的技巧