Running PowerShell Scripts Safely
Microsoft disables by default the operating system’s ability to run PowerShell scripts merely by clicking or opening them. But, if you use PowerShell scripts, you should take the following three steps to protect yourself against hacked web sites or e-mails that might find ways to run them without your knowledge.
1. Obtain a digital certificate and digitally sign any scripts you develop in-house. Require that scripts you obtain from other parties be signed by them.
2. Configure PowerShell so it will run only those scripts that are signed by parties you know and trust.
3. Secure your list of trusted certificates. It doesn’t do any good to restrict scripts to a list of trusted parties if a virus or Trojan horse is able to quietly add other signatures to your list.
If you don’t know how to take the preceding steps, get a professional to set up your system in this way—or don’t configure your system to run any scripts that happen to
get opened.
Last 5 posts in Windows Vista
- Getting and Installing PowerShell - March 30th, 2007
- Encrypt Entire Drives under windows vista with BitLocker - March 30th, 2007
- Fit the Full URL on Printouts when using Interent Explorer 7 - March 30th, 2007
- Internet Explorer 7.0 Cool Features - March 30th, 2007
- Programs Explorer Replaces Add/Remove Programs in windows vista - March 30th, 2007