Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Risks & mitigation of using IE8 on a server that runs an app that requires IE8

Posted on 2016-10-19
14
Medium Priority
?
142 Views
Last Modified: 2016-10-24
We have an app from EMC (the storage vendor) that requires us to use IE8 :
log a case & was told IE10-11 not supported as screen gets garbled.

As this server is internal (ie not accessible via Internet & not in DMZ),
what's the risks?  I suppose an internally infected PC/server can still
exploit & get into this server/app that runs IE8 (as console to the app).

How can we mitigate as IE8 doesn't have patches anymore?  Use endpoint
IPS as substitute for various vulnerabilities but I'm afraid many IPS vendor
has ceased releasing signatures/filters for IE8.

Havent explore with Chrome/Firefox yet if it works with the apps but was
told by colleague that they're unlikely to be supported.

IE8 is to be run/installed on the server hosting the app, not on laptops/PCs

I'll convey the name of the EMC app later
0
Comment
Question by:sunhux
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 3
  • +2
14 Comments
 
LVL 56

Expert Comment

by:McKnife
ID: 41850057
Hi.

You cannot install IE8 on modern OS' - technically impossible. The last OS where you could would be server 2008. So you need to try a different browser. Chrome for example offers support for oldschool things in form of an app that simulates legacy browser behavior.
1
 
LVL 88

Assisted Solution

by:rindi
rindi earned 480 total points
ID: 41850155
Have you tried using compatibility View in IE11? That will often allow you to view old stuff. Also check if there is an upgrade for the EMC app that runs on current browsers.
0
 
LVL 84

Assisted Solution

by:Dave Baldwin
Dave Baldwin earned 400 total points
ID: 41850307
You also can't run two versions of IE on the same computer.
0
Introducing the WatchGuard 420 Access Point

WatchGuard's newest access point includes an 802.11ac Wave 2 chipset, providing the fastest speeds for VoIP, video and music streaming, and large data file transfers. Additionally, enjoy the benefits of strong security as the 3rd radio delivers dedicated WIPS protection!

 

Author Comment

by:sunhux
ID: 41850504
The name of the EMC app is OCAOIS  & it's not an option to upgrade this app.


Can elaborate how we can go about doing the following:

>Chrome for example offers support for oldschool things in form of an app that
> simulates legacy browser behavior : how can I configure it or need a plug-in ?

>compatibility View in IE11?
How to enable  compatibility View in IE11 ?
0
 
LVL 56

Assisted Solution

by:McKnife
McKnife earned 800 total points
ID: 41850516
0
 
LVL 88

Assisted Solution

by:rindi
rindi earned 480 total points
ID: 41850539
In IE select tools, Compatibility view settings, then add the url.
0
 
LVL 79

Assisted Solution

by:arnold
arnold earned 320 total points
ID: 41851536
Seems like using a VM with Windows 7, Xp, server 2008 is one way to maintain access while using parental control to limit the access to the EMC OCAOIS portal interface a the sole destination to avoid ......user attempts to use the VM to access anything else.
0
 

Author Comment

by:sunhux
ID: 41852477
Our apps support team has tested out both IE11's Tools==> Compatibility View
settings as well as Chrome's oldschool support : did not help.

Was told this product OCAOIS is to capture clients' signature & sort of secure it:
The browser on the server is meant to access Management console of this
product.

Was further informed by our apps team that this current version 6 is the one
giving issue: previously while they're on version 3 running on Win2003, IE8
was working fine.

After upgrading the OS to Win2008 R2 followed by upgrading this app to
ver 6, found IE11 gives issues :display garbled & when clicking on certain
links, error pops up.

EMC (possibly this is an RSA related product;  RSA is owned by EMC) has
come up with ver 7 but we need to pay for licence upgrade: it's not
certain if ver 7 will support IE11
0
 
LVL 56

Accepted Solution

by:
McKnife earned 800 total points
ID: 41852491
Ok, 2008r2. You can uninstall ie11 and it should roll back to the previous browser, which should be ie8 on 08R2.
0
 
LVL 79

Expert Comment

by:arnold
ID: 41852777
depending on installed updates, ie9, ie10 might have been installed as well.

look at xpmode, or similar vm .....
0
 
LVL 56

Expert Comment

by:McKnife
ID: 41852803
If I am not mistaken, even then will it let you rollback through the versions back to the one that shipped with 2008R2: IE8.
0
 
LVL 79

Expert Comment

by:arnold
ID: 41853036
rollbacks at times work, the issue besides the version, there have been updates along the way in addition to the deployment of versions.......

Without trying, ..it is filled with peril.
0
 

Author Comment

by:sunhux
ID: 41853272
So create a VM that run IE8 in it to make it more secure?
0
 
LVL 56

Expert Comment

by:McKnife
ID: 41853306
Always possible, why not.
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ever wonder what it's like to get hit by ransomware? "Tom" gives you all the dirty details first-hand – and conveys the hard lessons his company learned in the aftermath.
The well known Cerber ransomware continues to spread this summer through spear phishing email campaigns targeting enterprises. Learn how it easily bypasses traditional defenses - and what you can do to protect your data.
How to create a custom search shortcut to site-search Experts Exchange using Google in the Firefox browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch your Bookmark Menu: Press 'Ctrl +…
Want to learn how to record your desktop screen without having to use an outside camera. Click on this video and learn how to use the cool google extension called "Screencastify"! Step 1: Open a new google tab Step 2: Go to the left hand upper corn…

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question