Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 384
  • Last Modified:

History Privacy Problem

I have just recently upgraded to Windows XP Home edition.  I am also using version 6.0 of Windows Internet Explorer.  While looking through the browser history list that opens after clicking the "HISTIRY" option on the IE toolbar, I noticed that every file I have opened, offline as well as online websites are listed in the "HISTORY" list.  This I feel is extemely invasive.  If hacked into all my information as far as files, etc that I have viewed are vulnerable and exposed.

How do I get rid of or disable this "history" feature..?  Deleting history under the tool menu does not do this.

HELP

I feel completely violated.
0
mtsprink
Asked:
mtsprink
  • 7
  • 5
  • 3
  • +1
1 Solution
 
sunray_2003Commented:
Dear mtsprink,

this would disable clicking history

http://www.winguides.com/registry/display.php/537/

Thanks,
Sunray
0
 
CrazyOneCommented:
>>>How do I get rid of or disable this "history" feature..?  

You don't but you can set the history to 0 days.
0
 
sunray_2003Commented:
but this would only disable you from deleting the history

what you can is to number of days you want to retain history to be 0

Sunray
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
CrazyOneCommented:
0 days will still have Todays history but that is all it will log.
0
 
sunray_2003Commented:
Also do this

open internet explorer
go to tools  --> internet options --> advanced
scroll down and check the option under security
" empty temporary internet file folder when browser is closed".. that way if someone gets into the temp folder they wont know where you have been

Sunray
0
 
CrazyOneCommented:
Where you see the Clear History button on the General Tab set that little box to 0
0
 
MobileOakAICommented:
I agree, except that I think setting it to one or two days should satisfy.

You are not that vulnerable and exposed as you may think, except for where you permit others to use your machine. In wroke situation clearing history will not help, they get to see the URL access before you do. So wahtever the exposure would be, it is more for friends and family who share the box.

So configure the XP to have a different ID and privelege for eache user, only let owners access their documents, and don't give everyone admin rights because you are nice. In fact, don't use your admin ID on internet, either, for that can expose you if you get an exploit that takes on, inherits your authority.
0
 
bbaoIT ConsultantCommented:
it is EASY if you use windows xp, just change your personal History folder's permissions, only YOU have full control, any other guys has NO ANY rights to access it. since this protection is based on NTFS level, so it is quite safe.

you may also a following question i just posted similar comment at there:
http://www.experts-exchange.com/Security/Win_Security/Q_20821715.html

hope it helps,
bbao
0
 
CrazyOneCommented:
Actually the History folder has no permission settings at least on my XP Pro system. The parent folder Local Settings defaults to the admins and the SYSTEM accounts.
0
 
bbaoIT ConsultantCommented:
yes it is, by default. you can change it by using cacls.exe at command-line.
0
 
CrazyOneCommented:
>>>you can change it by using cacls.exe

Yes but most people don't know how to use it and personally I don't see any real need to set permissions on it sense mtsprink is more worried about hackers and not other users. And since this is XP Home it uses Simple File sharing which even with permissions this feature kind of defeats a lot of NTFS security.

mtsprink if you aren't using a firewall then you best use one if you are concerned about getting hacked. BTW hackers probably could care less about your IE history. They usually are more interested in other things less mundane than what sites you have visited. :)
0
 
bbaoIT ConsultantCommented:
sorry,  CrazyOne, i dont think so. cacls.exe is shipped with windows xp, any people can open a Command Prompt window to invoke it. i am sure most people can not fully understand the strange syntax of command line, but they can just execute what we show to accomplish what they want. why dont?

mtsprink, you may try following commands at Command Prompt window, to change your personal History folder's permissions, only YOU have full control, any other guys has NO ANY rights to access it. since this protection is based on NTFS level, so it is quite safe.

x:
cd x:\documents and settings\USERNAMEE\Local Settings
cacls history > history_old_permissions
cacls history /r everyone /e
cacls history g USERNAME:f

where x: is the drive of your system partition. USERNAME is your username.
btw, all your old permissions information is saved in file "history_old_permissions" for your reference later.

hope it helps,
bbao
0
 
bbaoIT ConsultantCommented:
sorry, the latest comand should be "cacls history /g USERNAME:f"
0
 
CrazyOneCommented:
But what is the point that is what I am geting at bbao. mtsprink is concerned about hackers so if someone hacks in while mtsprink account is logged in and gets control of mtsprink account then this permission does nothing to stop the hackers form looking at the history folder. All this permission does is prevent other users who sign on from messing with that folder. But if they have admin rights thay can take that permission off. In the context of the question I don't see how setting permissions on the folder has any bearing. :)
0
 
CrazyOneCommented:
Umm why the C grad and why wasn't my comment chosen since I mentioned seeting the history days to 0 first?
0
 
bbaoIT ConsultantCommented:
CrazyOne,

sorry for later reply. the answer has been accepted but i would like to discuss a bit more with you, maybe the outcome is useful to other similar scenarios. i understand what you meant: the asker's major concern was on information exposure under attack, so a firewall based proposal was recommended by you although the asker finally accecpted a zero-day history solution. ok, as you mentioned, if someone hacks in while asker's account is logged in and gets control of his/her account then this permission does nothing to stop the hackers form looking at the history folder, stop at here, do you think the internet history information are more important and sensitive than other information such business documents, personal information or clients information in asker's hard disk? the start point of choosing a firewall is mainly to prevent history information? if so, i bet M$ would have already supported no-history feature as highlight. ;-))

so i think commonly asker's such requirement should be: dont like to see his/her visit history to be logged, or seen by other people including hackers. so my solution may prevent IE to log history at all (no one has NTFS permissions in the folder), or prevent other people seeing it (only you have permissions), or even allow parents monitor children's history (children have only write and modify permissions). as for how to pretect information on the computer, we should also proposal firewall and XP's ICF as a bssic solution, but it is a quite different issuse with that of no-history requirement.

mtsprink,

sorry for taking your question threads to discuss a bit more at here. so, a trick for you: i think you also dont like IE to record what URLs you type in at address bar, if so just press ctrl+o to input your URL then press return to go. thus, your URL will not be saved in the address bar's pop list. it is useful especially when you use other guys computer. this tip is only workable with IE. as for how to prevent logs in history, try my solution... ;-)))

thanks all,
bbao
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

  • 7
  • 5
  • 3
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now