Security Tips

Tips & Tricks
Security

Java Conscious
Running Java applets for the most part does not constitute a security breach. However, because these are programs that download and run on your system, you may think that the risk is not worth taking, no matter how small. If this is the case, you can tell Navigator not to enable Java programs or JavaScript. To do this, choose Options|Network Preferences then click on the Languages tab. Uncheck the option, Enable Java and (if you want) Enable JavaScript.

Secure Alert Netscape Navigator can warn you whenever you transmit information across the Internet without security. To set this, choose Options\|Security Preferences and click on the General tab. Check the Submitting a Form Insecurely option from the section, Show an Alert Before. If you're planning on doing any online shopping at all, you should always have this checked.

S for Secure
What's that extra "s" for? If you see a URL that begins with "https" you know it's located on a server that runs Netscape's Internet security standard, Secure Sockets Layer (SSL). This means that you are assured the transaction between you and the server is secure. You can also look at the key icon in the lower left corner of the browser window. If this is solid with a blue background, you know you are connected to a secure server. If it's broken, the server is not secure.

SSL Control
The Netscape Navigator Security Preferences box has a section at the bottom that lets you select the version of SSL you want to use (SSL v2 or SSL v3). These ensure that any information you enter on SSL-protected Web pages is encrypted. Both should be checked by default, and you should leave it that way. Messing around with these settings without knowing what you're doing can damage your security protocols.

A question of security
The Netscape Security User Group is a great resource for questions you may have about Netscape security features, or Internet security in general. You can find all the answers (well, almost all) at snews://secnews.netscape.com/netscape.security

Password, please
Much of Netscape security is justifiably directed at keeping transactions over the Internet secure. Don't overlook the importance, however, of keeping your own work space secure, particularly if you're in a situation in which others may have access to your computer. To set your password, choose Options|Security Preferences, then click on the Passwords tab. You can set your password here and select how often you want to be asked for the password.

Security Mix-Up
Netscape's SSL protocol allows Web documents to contain both secure and insecure data. If you access such a document through a secure server--using the "https" URL--the insecure information is hidden and replaced with an icon that indicates mixed security. If you want to access this insecure information, connect to the same address, but use the regular "http" URL.

Toothy Indications
When you view a secure document in Netscape Navigator, the number of teeth on the key icon indicates the type of encryption used. If there are two teeth, the document uses high-grade encryption, which cannot be exported from the U.S. to other countries. If it has one tooth, it uses low-grade encryption, which is allowed for U.S. export.

Certificate Program
Personal Certificates are another way that Netscape Navigator keeps things secure. These are electronic keys that identify you to a secure server. Essentially, they tell the server that you are indeed you. To find out more about Personal Certificates and how to obtain them, open Netscape Navigator (make sure you are connected to the Internet), then choose Options|Security Preferences and click on the Personal Certificates tab. To obtain one, click on Obtain New Certificate and follow all the necessary steps.

The Certifying Authority
VeriSign is the current Certifying Authority for Personal Certificates, and you can obtain Personal Certificates directly from the company (rather than going through the Security Preferences options). The address is: http://www.verisign.com

Quick, but dangerous
One of the tips told you not to worry about secure information being cached on your hard drive. However, getting secure documents can be a low process, because a fresh document is retrieved every time. So, if you are very sure your computer is safe from a hard drive hack, you can tell Navigator to cache SSL documents. To do this, open Navigator and choose Options|Network Preferences, then click on the Cache tab. At the bottom of the tab, check the option, Allow Persistent Caching of Pages Retrieved Through SSL. Your secure pages will get through more quickly, but you may risk a security breach.

Site seen
SITE In addition to Personal Certificates, Netscape Navigator uses Site Certificates to enhance security. Essentially, in order to operate securely, a Web server must get a special certificate, and then it sends you a copy of the certificate information when you connect through SSL. To see this information choose Options|Security Preferences, then click on the Site Certificates tab. The information here enables you to make sure that any data you send goes only to the certificate owner. You can also specify if you want to allow connections to the owners of specific Site Certificates, or to sites that certain certifying authorities have certified. To do any of this, select the Site Certificate from the list and click on Edit Certificate.

Westfield, Massachusetts
Email: networld@westfield-ma.com