From: Subject: Securing Your Web Browser Date: Tue, 23 Jan 2007 00:38:53 -0800 MIME-Version: 1.0 Content-Type: multipart/related; type="text/html"; boundary="----=_NextPart_000_0000_01C73E86.DB6C34F0" X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3028 This is a multi-part message in MIME format. ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Location: http://www.cert.org/tech_tips/securing_browser/ Securing Your Web Browser
=
=
3Dhome3DFAQ=203D"site
3D""=20 Options

Advisories

US-CERT=20 Vulnerability Notes = Database

Incident=20 Notes

Current=20 Activity=20 =

 Related=20
3D""=20 Tech=20 Tips

AirCERT

Employment=20 Opportunities=20 =

 more=20 links
3D""=20 CERT=20 Statistics

Vulnerability=20 Disclosure Policy

CERT=20 Knowledgebase

System=20 Administrator courses

CSIRT=20 courses

Other=20 Sources of Security=20 Information

Channels=20 =

 Message


3D""=20 Related=20 Sites

3Dcylab=20

Securing Your Web Browser

Will Dormann and = Jason=20 Rafail
CERT Coordination Center=20

This paper will help = you=20 configure your web browser for safer internet = surfing. It=20 is written for home computer users, students, small = business=20 workers, and any other person who works with limited=20 information technology (IT) support and broadband = (cable=20 modem, DSL) or dial-up connectivity. Although the = information=20 in this document may be applicable to users with = formal IT=20 support as well, organizational IT policies should = supersede=20 these recommendations.

Int= roduction
  1. Why=20 Secure Your Web Browser?
  2. Underst= anding=20 Web Browser Features=20
  3. = Vulnerabilities=20 and Attack Vectors=20
    1. ActiveX=20 Controls=20
    2. Java
    3. Cross-Site=20 Scripting=20
    4. Cross-Zone=20 and Cross-Domain Vulnerabilities
    5. Malicious=20 Scripting, Active Content and HTML=20
    6. Spoofin= g
  4. Ho= w=20 to Secure Your Web Browser=20
    1. Microsoft=20 Windows Internet Explorer=20
    2. = Mozilla=20 Firefox=20
    3. Apple=20 Computer Safari=20
    4. O= ther=20 Browsers
  5. K= eeping=20 Your Computer Secure
Refer= ences
  • US-CERT<= /A>=20
  • CERT/CC=20
  • Micro= soft=20 Windows XP=20
  • Apple=20 Macintosh OS X=20
  • Linux =
  • System=20 Administrators
Document= =20 revision history

I. Why Secure Your Web = Browser?

Today,=20 web browsers such as Internet Explorer, Mozilla = Firefox, and=20 Safari (to name a few), are installed on almost all = computers.=20 Because web browsers are used so frequently, it is = vital to=20 configure them securely. Often, the web browser that = comes=20 with an operating system is not set up in a secure = default=20 configuration. Not securing your web browser can lead = quickly=20 to a variety of computer problems caused by anything = from=20 spyware being installed without your knowledge to = intruders=20 taking control of your computer.

Ideally, = computer=20 users should evaluate the risks from the software they = use.=20 Many computers are sold with software = already loaded.=20 Whether installed by a computer manufacturer, = operating=20 system maker, internet service provider, or by a = retail store,=20 the first step in assessing the vulnerability of your = computer=20 is to find out what software is installed and how one = program=20 will interact with another. Unfortunately, it is not = practical=20 for most people to perform this level of=20 analysis.

There is an increasing threat from = software=20 attacks that take advantage of vulnerable web = browsers. In=20 recent months, the CERT/CC has observed a trend = whereby new=20 software vulnerabilities are exploited and directed at = web=20 browsers through the use of compromised or malicious = web=20 sites. This problem is made worse by a number of = factors,=20 including the following:=20
  • Many web browsers are configured to provide = increased=20 functionality at the cost of decreased security.=20
  • New security vulnerabilities may have been = discovered=20 since the software was configured and packaged by = the=20 manufacturer.=20
  • Many web sites require that users enable certain = features or install more software, putting the = computer at=20 additional risk.=20
  • Many users do not know how to configure their = web=20 browsers securely.=20
  • Many users are unwilling to enable or disable=20 functionality as required to secure their web = browser.=20
  • Many users are unaware whether or not their = computer has=20 been compromised.=20
  • Many users fail to properly =93clean=94 a = compromised=20 computer.

As a result, exploiting=20 vulnerabilities in web browsers has become a popular = way for=20 attackers to compromise computer systems. =

In=20 addition to following this paper's recommendations, = refer to=20 the documentation in the Refer= ences=20 section for other steps you can take to secure your=20 computer.


II. Understanding Web = Browser=20 Features

It is important to understand the = functionality=20 and features of the web browser you use. Enabling some = web=20 browser features may lower security. For example, the = ActiveX=20 software feature has a history = of vulnerabilities=20 that have lead to severe security impacts when=20 enabled.

Multiple web browsers may be installed = on your=20 computer. Other software applications on your = computer, such=20 as email clients or document viewers, may use a = different=20 browser than the one you normally use to access the=20 web. Also, certain file types may be configured = to open=20 with a different web browser. Using one web browser to = access=20 web sites does not mean other applications = will=20 automatically use the same browser. For this reason, = it is=20 important to securely configure each web=20 browser installed on your computer.

Web = sites may=20 require the use of a browser that supports scripting = or active=20 content, such as JavaScript or ActiveX controls, or = the sites=20 themselves may contain vulnerabilities. Web sites can = be=20 considered products, and as a user of the product, you = can=20 contact the web site administrators and request that = the sites=20 be designed so that they do not require the use of = features=20 that may pose a computer security risk.

Some = specific=20 web browser features and attributes are described = in this=20 document. Understanding what different features do = will help=20 you understand how they affect your web browser's = functionality and the security of your = computer.

ActiveX is a = technology=20 used by Microsoft Internet Explorer on Microsoft = Windows.=20 ActiveX allows applications or parts of applications = to be=20 utilized by the web browser. A web page can use = ActiveX=20 components that may already reside on a Windows = system, or=20 may download the component from a web site. This = gives=20 extra functionality to traditional web browsing, but = may also=20 introduce more severe vulnerabilities if not properly=20 implemented.

Java is an=20 object-oriented programming language that can be used = to=20 develop active content for web sites. A Java Virtual = Machine,=20 or JVM, is used to execute the Java code, or =93applet,=94 = provided by=20 the web site. The JVM is designed to separate, or = =93sandbox,=94=20 running code so that it does not affect the rest of = the=20 system. Some operating systems come with a JVM, while = others=20 require a JVM to be installed before Java can be used. = Java=20 applets run independently from the operating=20 systems.

Active=20 Content, or plug-ins, are intended for use in = the web=20 browser. They are similar to ActiveX controls but = cannot be=20 executed outside of a web browser. Macromedia Flash is = an=20 example of Active Content that can be provided as a=20 plug-in.

JavaScript is = a dynamic=20 scripting language that is used to develop active = content for=20 web sites. Unlike Java, JavaScript is a language that = is=20 interpreted by the web browser directly. There are=20 specifications in the JavaScript standard that = restrict=20 certain features such as accessing local = files.

VBScript is a=20 programming language that is unique to Microsoft = Windows.=20 VBScript is similar to JavaScript, but it is not as = widely=20 used in web sites because of its limited=20 compatibility with browsers other than Internet=20 Explorer.

Cookies are = text files=20 placed on your computer to store data that is used by = a web=20 site. A cookie can contain any information that a web = site is=20 designed to place in it. Cookies may contain = information about=20 the sites you visited, or may even contain credentials = for=20 accessing the site. Cookies are designed to be = readable only=20 by the web site that created them.

Security Zones and the = Domain=20 Model are methods Microsoft Windows = uses designed=20 to provide multiple levels of security settings for a = single=20 system. While primarily used by Internet Explorer, it = can be=20 invoked by other applications on the system that use=20 components of Internet Explorer. You can learn more = about=20 Microsoft=92s Security Zones, the Domain Model, = and how to=20 secure them at this web site: http://www.microsoft.com/windows/ie/using/howto/security/setup.asp= .

III. Vulnerabilities = and=20 Attack Vectors

Increasingly, attackers = are exploiting=20 client-side systems (your computer) through various=20 vulnerabilities. They use these vulnerabilities to = take=20 control of your computer, steal your information, = destroy your=20 files, and attack other computers. = A low-cost way=20 for attackers to gain control of your computer is by=20 exploiting vulnerabilities in web browsers. An = attacker can=20 simply create a malicious web page that will install = Trojan=20 software or spyware that will steal information = from your=20 computer. Additional information about spyware is = available in=20 the following document: http://www.cert.= org/archive/pdf/spyware2005.pdf.=20 Rather than actively targeting and attacking = vulnerable=20 systems, a malicious web site can passively compromise = systems=20 as the site is visited. A malicious HTML document can = also be=20 emailed to victims. In these cases, the act of opening = the=20 email or attachment can compromise the = system.

In this=20 section, we will point out some common vulnerabilities = in web=20 sites and web browsers that tend to be exploited. We = will not=20 go into great detail in this document, but will = provide links=20 to other documentation that will help explain the=20 vulnerabilities.

  1. ActiveX=20 Controls

    ActiveX is a technology that has been = plagued=20 with various vulnerabilities and implementation = issues. One=20 problem with using ActiveX in a web browser is that = it=20 greatly increases the attack surface, or = =93attackability,=94 of=20 a system. Vulnerabilities in ActiveX objects may be=20 exploited via Internet Explorer, even if the object = was=20 never designed to be used in a web browser. In 2000, = the=20 CERT/CC held a workshop to analyze security in = ActiveX. The=20 results from that workshop may be viewed here: http://www.cert.o= rg/reports/activeX_report.pdf.=20 Many vulnerabilities associated with ActiveX = controls lead=20 to severe impacts. Attackers exploiting ActiveX=20 vulnerabilities can frequently gain control of = computers.=20 You can search the US-CERT and CERT/CC web sites for = ActiveX=20 vulnerabilities at the following URLs: http://search.= us-cert.gov/query.html?qt=3Dactivex=20 and http://search.cer= t.org/query.html?qt=3Dactivex.=20

  2. Java

    Java is an = object-oriented=20 programming language developed by Sun Microsystems. = A Java=20 applet is machine-independent and requires a Java = Virtual=20 Machine (JVM) on the client computer so that it can = execute.=20 Java applets traditionally execute within a = =93sandbox=94 where=20 the interaction with the rest of the system is = limited.=20 However, various implementations of the JVM contain=20 vulnerabilities that allow an applet to bypass these = restrictions. Signed Java applets can also bypass = sandbox=20 restrictions, but they generally prompt the user = before they=20 can execute. You can search the US-CERT and CERT/CC = web=20 sites for Java vulnerabilities at the following = URLs: http://search.us-= cert.gov/query.html?qt=3Djava=20 and http://search.cert.org/query.html?col=3Dcertadv&col=3D= vulnotes&qt=3Djava.=20

  3. Cross-Site=20 Scripting

    Cross-site scripting, often referred = to as CSS=20 or XSS, is a vulnerability in a web site that = permits an=20 attacker to leverage the trust relationship that you = have=20 with that site. For a high-level description of CSS = attacks,=20 please read the whitepaper published at http://= www.cert.org/archive/pdf/cross_site_scripting.pdf.=20 Note that cross-site scripting is not usually caused = by a=20 failure in the web browser. You can search the = CERT/CC web=20 sites for cross-site scripting vulnerabilities at = the=20 following URLs: http://search.us-= cert.gov/query.html?qt=3Djava=20 and http= ://search.cert.org/query.html?qt=3Dcross-site+scripting.=20

  4. Cross-Zone and=20 Cross-Domain Vulnerabilities

    Most web browsers = employ=20 security models to prevent a web site from accessing = data in=20 a different domain. These security models are = primarily=20 based on the Netscape Same Origin Policy: http://www.mozilla.org/projects/security/components/same-origin.html= .=20 Internet Explorer also has a policy to enforce = security zone=20 separation: http://msdn.microsoft.com/workshop/security/szone/overview/overvi= ew.asp.=20

    Vulnerabilities in these security models can = be used=20 to perform actions that a site could not normally = perform.=20 The impact can be similar to a cross-site scripting=20 vulnerability. However, if a vulnerability allows = for an=20 attacker to cross into the local machine zone or = other=20 protected areas, the attacker may be able to execute = arbitrary commands on the vulnerable system. You can = search=20 the US-CERT and CERT/CC web sites for cross-zone and = cross-domain vulnerabilities at the following URLs: = http://se= arch.us-cert.gov/query.html?qt=3Dcross-domain=20 and  http://search.cert.org/query.html?col=3Dce= rtadv&col=3Dvulnotes&qt=3D%22cross-domain%22.=20

  5. Malicious = Scripting,=20 Active Content, and HTML

    Some sites may contain=20 malicious scripts, active content, or HTML that will = attempt=20 to trick the visitor into providing information, or=20 performing an action that will enable the attacker = to gain=20 some privilege. In the absence of vulnerabilities, = the=20 attackers rely on social=20 engineering to gain access to the victim=92s = information.=20 However, vulnerabilities in web browsers may be = exploited to=20 gain privileges as well. Below is a list of = vulnerabilities=20 in web browsers that may provide an exploit vector = through=20 the use of malicious code. In 2000, the CERT/CC = released a=20 frequently asked questions (FAQ) document on = malicious=20 scripting. It is available here: http://www= .cert.org/tech_tips/malicious_code_FAQ.html.=20 You can search the US-CERT and CERT/CC web sites for = malicious scripting and content vulnerabilities at = the=20 following URLs: http://search.us-cert.gov/query.html?qt=3Dmalicious+scriptin= g+active+content=20 and http://search.cert.org/query.html?qt=3Dmalicious+scripting+acti= ve+content.=20

  6. Spoofing

    As it = relates to web=20 browsers, spoofing is a term used to describe = methods of=20 faking various parts of the browser user interface. = This may=20 include the address or location bar, the status bar, = the=20 padlock, or other user interface elements. Phishing = attacks=20 often utilize some form of spoofing to help convince = the=20 user to provide personal information. If a user's = browser is=20 vulnerable to spoofing, they are more likely to fall = victim=20 to a phishing attack. You can search the US-CERT and = CERT/CC=20 web sites for malicious scripting and content=20 vulnerabilities at the following URLs: http://s= earch.us-cert.gov/query.html?qt=3Dbrowser+spoof=20 and http://sear= ch.cert.org/query.html?qt=3Dbrowser+spoof.=20  The US-CERT document =93Technical Trends in = Phishing=20 Attacks=94 (available at http= ://www.us-cert.gov/reading_room/phishing_trends0511.pdf)=20 has more information about spoofing and phishing = techniques.=20

IV. How to Secure Your = Web=20 Browser

Some software features that provide = functionality=20 to a web browser, such as ActiveX, Java, Scripting=20 (JavaScript, VBScript, etc), may also introduce=20 vulnerabilities to the computer system. These may stem = from=20 poor implementation of the protocol, poor design, = poorly=20 written software, or an insecure configuration. For = these=20 reasons, you should understand which browsers support = which=20 features and the subsequent risks they could = introduce. Some=20 web browsers permit you to fully disable the use of = these=20 technologies, while others may only permit you to=20 reduce functionality.

This section shows = you how=20 to securely configure a few of the most popular web = browsers=20 and how to disable features that can cause=20 vulnerabilities. We encourage you to visit the web = site for=20 the browser you use to learn more. If a vendor does = not=20 provide documentation on how to secure the browser, we = encourage you to contact them and ask for it. =

Web=20 browsers are frequently updated. Depending on the = version of=20 your software, the features and options may move or=20 change.


A. Microsoft = Internet=20 Explorer


Microsoft Internet Explorer (IE) is a = web=20 browser integrated into the Microsoft Windows = operating=20 system. Removal of this application is not=20 practical.

In addition = to=20 supporting Java, scripting and other forms of active = content,=20 Internet Explorer implements ActiveX technology. While = any=20 application is potentially vulnerable to attack, it is = possible to mitigate a number of serious = vulnerabilities by=20 using a web browser that does not support ActiveX = controls.=20 However, using an alternate browser may affect the=20 functionality of some sites that require the use of = ActiveX=20 controls. Note that using a different web browser will = not=20 remove IE or other Windows components from the system. = Other=20 software, such as email clients, may invoke IE, the = WebBrowser=20 ActiveX control, or the IE HTML rendering engine = (MSHTML). Use=20 of these products may reintroduce the risks presented = by these=20 vulnerabilities. Results from the CERT/CC ActiveX = workshop in=20 2000 are available at the following URL: http://www.cert.o= rg/reports/activeX_report.pdf.

Here=20 are steps to disable various features in Internet = Explorer.=20 Note that menu options may vary between versions of = IE, so you=20 should adapt the steps below as = appropriate.


In=20 order to change settings for Internet Explorer, select = Tools then Internet = Options=85





Select the Security tab. On = this tab you=20 will find a section at the top, which lists the = various=20 security zones that Internet Explorer uses. More = information=20 about Internet Explorer security zones is available in = the=20 Microsoft document Setting=20 Up Security Zones. For each of these zones, you = can select=20 a Custom Level of protection. By clicking the Custom Level = button, you will=20 see a second window open that permits you to select = various=20 security settings for that zone. The Internet zone is = where all=20 sites initially start out. The security settings for = this zone=20 apply to all the web sites that are not listed in the = other=20 security zones. We recommend the High security = setting be=20 applied for this zone. By selecting the High security = setting,=20 several features including ActiveX, Active scripting, = and Java=20 will be disabled. With these features disabled, the = browser=20 will be more secure. Click the Default Level = button and then=20 drag the slider control up to High.

3D"IE

For a = more=20 fine-grained control over what features are allowed in = the=20 zone, click the Custom=20 Level button. Here you can control the specific = security options that apply to the current zone. = Default=20 values for the High security setting can be selected = by=20 choosing High = and=20 clicking the Reset=20 button to apply the changes.

3D"IE



 Trusted sites is a = security=20 zone for web sites that you believe are securely = designed and=20 contain trustworthy content. To add or remove sites = from this=20 zone, you can click the Sites=85 button. = This will open=20 a new window that will list the sites that you trust = and=20 permit you to add or remove sites. You may also = require that=20 only sites with Secure Sockets Layer (SSL) implemented = can be=20 active in this zone. This permits you to verify that = the site=20 you are visiting is the site that it claims to be.=20

3D"IE  3D"IE

We recommend setting the security = level for=20 the Trusted = sites zone=20 to Medium. When the Internet = Zone is=20 set to High, = you may=20 encounter web sites that do not function properly due = to one=20 or more of the associated security settings. This is = where the=20 Trusted sites = zone can=20 help. If you trust that the site will not contain = malicious=20 code, you can add it to the list of sites in the = Trusted sites=20 zone. Once a site is added to this zone, features such = as=20 ActiveX and active scripting will be enabled. The = benefit of=20 this type of configuration is that IE will be more = secure by=20 default, and sites can be =93whitelisted=94 in the = Trusted sites=20 zone to gain extra functionality.


The Privacy tab = contains settings=20 for cookies. Cookies are text files placed on your = computer by=20 various sites that you visit either directly = (first-party) or=20 indirectly (third-party) through ad banners, for = example. A=20 cookie can contain any data that a site wishes to = store. It is=20 often used to track your computer as you move through = a web=20 site and store information such as preferences or = credentials.=20 We recommend that you select the Advanced button and = select=20 Override automatic = cookie=20 handling. Then select Prompt for both = first and=20 third-party cookies. This will prompt you each time a = site=20 tries to place a cookie on your computer. You can then = evaluate the originating site, whether you wish to = accept or=20 deny the cookie, and what action to take in the future = (always=20 accept, always block, or continue to ask). =

  3D"IE

By selecting the Sites... button, = you can=20 manage the cookie settings for specific sites. You can = add or=20 remove sites, and you can change the current settings = for=20 existing sites. The bottom section of this window will = specify=20 the domain of the site and the action to take when = that site=20 wants to place a cookie on your computer. You can use = the=20 upper section of this window to change these=20 settings.

3D"IE


The = Advanced tab = contains=20 settings used by all zones. The settings contained in = the=20 Multimedia = section have=20 features that you can adjust to protect against some = potential=20 vulnerabilities. For instance, attackers may be able = to track=20 your usage or exploit the software you use to=20 play multimedia data. We recommend disabling the = options=20 to play sounds and videos:

3D"IE


Under = the Programs tab, you = can specify=20 your default applications for viewing web sites, email = messages, and other network related tasks. You = can also=20 prevent Internet Explorer from showing you a message=20 asking to be your default web = browser.





B. Mozilla = Firefox

Mozilla=20 Firefox supports many of the same features as = Internet=20 Explorer, with the exception of ActiveX and the = Security Zone=20 model. We recommend looking in the Help, For Internet Explorer = Users=20 menu to understand the different terminology used by = the two=20 browsers.

Following are steps to disable = various=20 features in Mozilla Firefox. Note that some menu = options may=20 change between versions or may appear in different = locations=20 depending on the host operating system. You should = adapt the=20 steps below as appropriate.

To edit the = settings for=20 Mozilla Firefox, select Tools, then Options.




You = will then see=20 an Options window that has a row of categories along = the top.=20 The first category of interest is the General category. = Under this=20 section, for instance, you can set Firefox as your = default=20 browser.

3D"Firefox


Under = the Privacy=20 category, you can select the Cookies subcategory. Here = you can=20 disable cookies or change your preferences for how the = browser=20 handles them. In general, we recommend enabling = cookies for the original site = only.=20  Additionally, by enabling the option unless I have removed = cookies set by=20 the site, a web site can be =93blacklisted=94 = from setting=20 cookies when its cookies are removed = manually.

  


Many=20 web browsers will allow you to store login = information. In=20 general, we recommend against using such features. = Should you=20 decide to use the feature, ensure that you use the = measures=20 available to protect the password data on your = computer. Under=20 the Privacy = category,=20 the Passwords=20 subcategory contains various options to manage stored=20 passwords, and a Master=20 Password feature to encrypt the data on your = system. We=20 encourage you to use this option if you decide to let = Mozilla=20 Firefox manage your passwords.

3D"Firefox


The = Content category = has an=20 option to Enable = Java.=20 Java is a programming language that permits web site = designers=20 to run applications on your computer. We recommend = disabling=20 this feature unless required by the site you wish to = visit.=20 Again, you should determine if this site is = trustworthy and=20 whether you want to enable Java to view the site=92s = content.=20 After you are finished visiting the site, we recommend = disabling Java until you need it again.

The = Warn me when web sites try = to=20 install extensions or themes option will = display a=20 warning bar at the top of the browser when a web site = attempts=20 to take such an action.

Press the Advanced button to = disable=20 specific JavaScript features. We recommend disabling = all of=20 the options displayed in this dialog.

=20   3D"Firefox


The = Downloads section = has an=20 option to modify actions taken when files are = downloading. Any=20 time a file type is configured to open = automatically with=20 an associated application, this can make the browser = more=20 dangerous to use. Vulnerabilities in these associated=20 applications can be exploited more easily when they = are=20 configured to open automatically. Click the View & Edit = Actions=20 button to view the current download settings and = modify them=20 if necessary.

3D"Firefox  

The=20 Download Actions dialog shows the file types and=20 the actions the browser will perform when it = encounters a=20 given file type. For any file type listed, click = on=20 either Remove=20 Action or Change=20 Action.... If you click on Change Action..., = select=20 Save them on my=20 computer to save files of that type to the = computer.=20 This helps prevent automated exploitation of=20 vulnerabilities that may exist in these=20 applications.

3D"Firefox  3D"Firefox


Firefox 1.5=20 includes a feature to Clear=20 Private Data. This option will remove = potentially=20 sensitive information from the web browser. Select = Clear Private = Data... from=20 the Tools = menu to use=20 this privacy feature.

3D"Firefox  3D"Firefox

C. Apple Computer's Safari = web=20 browser

Safari supports many of the same = features as=20 Mozilla Firefox. This section describes steps to = disable=20 various features in Safari. Note that some menu = options=20 may change over time, and you should adapt the steps = below as=20 appropriate.

In order to change settings, = select Safari and then = select Preferences=85

Note that=20 on the Safari menu, you can also select the option = =93Block=20 Pop-up Windows=94. This option will prevent sites from = opening=20 another window through the use of scripting, or active = content. Be aware that while pop-up windows are often=20 associated with advertisements, some sites may attempt = to=20 display content relevant to your usage of the site in = a new=20 window. Therefore, setting this option may disable the = functionality of some sites.

3D"Safari

Once you = select the=20 Preferences = menu, the=20 window depicted below will open. The first tab to = examine is=20 the General = tab. On=20 this tab, you can set up many options such as Save downloaded files = to: and=20 Open =93safe=94 = files after=20 downloading.  We recommend that you save=20 downloaded files to a temporary folder that you create = for=20 downloading files. We also recommend that you deselect = the=20 Open =93safe=94 = files after=20 downloading option.

3D"Safari


The = next section=20 of interest is the AutoFill tab. On = this tab,=20 you can select what types of forms your browser will = fill in=20 automatically. In general, we recommend against using = AutoFill=20 features. If someone can gain access to your computer, = or to=20 the data files, then the AutoFill feature may permit = them even=20 easier access to other sites that they would not = otherwise=20 have the ability to access. However, if used with = appropriate=20 protective measures, it may be acceptable to enable = AutoFill.=20 We recommend using filesystem encryption software such = as OS X=20 FileVault=20 to provide additional security for files that reside = in a=20 user's home directory.

3D"Safari


The = Security tab = provides several=20 options. The Web=20 Content section permits you to enable or = disable=20 various forms of scripting and active content. We = recommend=20 disabling the first three options in this section, and = only=20 enabling them when you require the functionality of = these=20 features. We recommend selecting the Block Pop-up = Windows option.=20 Remember that this option will prevent sites from = opening=20 another window through the use of scripting, or active = content. Again, be aware that while pop-up windows are = often=20 associated with advertisements, some sites may attempt = to=20 display content relevant to your usage of the site in = a new=20 window. Therefore, setting this option may disable the = functionality of some sites.

It is safer to = use Safari=20 without plug-ins and Java, so we recommend disabling = the=20 options Enable = plug-ins=20 and Enable = Java. It is=20 also safer to disable JavaScript. However, many web = sites=20 require JavaScript for proper operation.

In = this dialog=20 you can disable cookies and can also view or = remove=20 cookies that have been set. In general, we recommend = disabling=20 cookies and enabling them only when you visit a site = that=20 requires their use. At this point, you should = determine if the=20 site is trustworthy (i.e., contains no malicious = content and=20 is securely designed) and determine whether you want = to allow=20 cookies to access the site=92s content. After you are = finished=20 visiting the site, we recommend disabling cookies = until=20 you need to access a site that requires cookies. You = can limit=20 cookies to the sites that you navigate to by selecting = the=20 option Only from = sites you=20 navigate to. This will permit sites that you = visit to=20 set cookies, but not third-party sites. Finally, we = recommend=20 selecting the Ask = before=20 sending a non-secure form to a secure website = option.=20 This will alert you when data is sent to a secure web = site=20 over an insecure channel.

3D"Safari

D. Other = Browsers

Other web=20 browsers may have similar options to those described = in the=20 previous sections. Please refer to the browser = documentation=20 to determine which options are available and how to = make the=20 necessary changes. For example, here are some other = popular=20 browsers:

Mozilla Suite - http://www.mozilla.or= g/products/mozilla1.x
Opera=20 - http://www.opera= .com/support/tutorials/security
Konqueror=20 - http://www.konqueror.org/
Netsc= ape=20 - http://browser.netscape.com/

V. Keeping Your = Computer=20 Secure

In addition to selecting and securing your = web=20 browser, you can take other steps to protect your=20 computer:

  1. Read the CERT/CC Home=20 Network Security and Home=20 Computer Security documents.

  2. Install and use antivirus software

    While an=20 up-to-date antivirus software package cannot protect = against=20 all malicious code, for most users it remains the = best=20 first-line of defense against malicious code = attacks. Many=20 antivirus packages support automatic updates of = virus=20 definitions. We recommend using these automatic = updates when=20 available. A partial list of antivirus=20 vendors is available on the CERT/CC = web site.=20

  3. Enable automatic software updates if=20 available

    Vendors will usually release patches = for their=20 software when a vulnerability has been discovered. = Most=20 product documentation tells you how to get updates = and=20 patches. You should be able to obtain updates from = the=20 vendor's web site. Read the manuals or browse the = vendor's=20 web site for more information.

    Some = applications will=20 automatically check for available updates, and many = vendors=20 offer automatic notification of updates via a = mailing list.=20 Look on your vendor's web site for information about = automatic notification. If no mailing list or other=20 automated notification mechanism is offered, you may = need to=20 check the vendor's web site periodically for = updates.=20

  4. Avoid unsafe behavior

    Additional information = on this=20 topic can be found in the document Home=20 Network Security.

    • Use caution when opening email = attachments=20 or when using peer-to-peer file sharing, instant=20 messaging, or chat rooms.=20
    • Don't enable file sharing on network = interfaces=20 exposed directly to the internet.

  5. Follow the principle of least privilege =97 = don't enable=20 it if you don't need it

    Consider creating and = using an=20 account with limited privileges instead of an=20 =93administrator=94 or =93root=94 level account for = everyday tasks.=20 Depending on the operating system, you only need to = use=20 administrator-level access when installing new = software,=20 changing system configurations, and other important = tasks.=20 Many vulnerability exploits (e.g., viruses, Trojan = horses)=20 are executed with the privileges of the user that = runs them=20 =97 making it far more risky to be logged in as an=20 administrator all the time.

References

US-CERT References

  • Avoiding=20 Social Engineering =97=20 http://www.us-cert.gov/cas/tips/ST04-014.html=20
  • Browsing=20 Safely: Understanding Active Content and Cookies = =97=20 http://www.us-cert.gov/cas/tips/ST04-012.html=20
  • Evaluating=20 Your Web Browser's Security Settings =97=20 http://www.us-cert.gov/cas/tips/ST05-001.html=20
  • Spyware=20 =97 http://www.us-cert.gov/reading_room/spyware.pdf=20
  • Understanding=20 Internationalized Domain Names =97=20 http://www.us-cert.gov/cas/tips/ST05-016.html=20
  • Understanding=20 Web Site Certificates =97=20 http://www.us-cert.gov/cas/tips/ST05-010.html=20
  • Understanding=20 Your Computer: Web Browsers =97=20 http://www.us-cert.gov/cas/tips/ST04-022.html =

CERT/CC References

  • Before=20 You Connect a New Computer to the Internet =97=20 = http://www.cert.org/tech_tips/before_you_plug_in.html=20
  • Home=20 Computer Security =97=20 http://www.cert.org/homeusers/HomeComputerSecurity/=20
  • Home=20 Network Security =97=20 http://www.cert.org/tech_tips/home_networks.html=20
  • Technical=20 Trends in Phishing Attacks =97=20 http://www.cert.org/archive/pdf/Phishing_trends.pdf =

Microsoft Windows XP=20 References

  • Improve=20 the safety of your browsing and e-mail = activities =97=20 = http://www.microsoft.com/athome/security/online/browsing_safety.mspx=20
  • Microsoft=20 Windows XP Baseline Security Checklist =97=20 = http://www.microsoft.com/technet/archive/security/chklist/xpcl.mspx=20
  • Microsoft=20 Windows XP Service Pack 2 =97=20 http://www.microsoft.com/windowsxp/sp2/default.mspx=20
  • Microsoft's=20 Protect Your PC =97 = http://www.microsoft.com/protect/=20
  • Setting=20 Up Security Zones =97=20 = http://www.microsoft.com/windows/ie/using/howto/security/setup.mspx=20
  • Using=20 the Internet Connection Firewall =97=20 = http://www.microsoft.com/windowsxp/home/using/howto/homenet/icf.asp=20

Apple Macintosh = OSX=20 References

  • Apple=20 Product Security =97=20 http://www.apple.com/support/security/=20
  • Apple=20 Security Updates =97=20 = http://docs.info.apple.com/article.html?artnum=3D61798=20
  • How=20 to Keep Network Computers Secure =97=20 = http://docs.info.apple.com/article.html?artnum=3D61534=20
  • OSX=20 Security Features Overview =97=20 http://www.apple.com/macosx/features/security/ =

Linux References

System = Administrator=20 References



Revision = History
January=20 23, 2006       =20         =    =20 Inital Release

=
------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/cCERTlogo2.gif R0lGODlh+QA1AOYAAImXrTAeA/7+/4So6Wx5jgB390+S9ZSnxM3W8KrC54Ogz2mZ6ZSgtW1wdSmG 91FSUpSx43WBlgBVrHyLo6a+5IeNmJ2z1aizxIqk13WZ2SppvLTL7AA2oqjC6Xai75et1bXF3qW6 3FJ7w6fA5rTL9ABGpFeK3efs+6WrszBxyqK84wBVzCJdrKG7401XaKW84EZCNoOb0kJxvV1kb63H 763F6QBm4aS95ANivau+2xpdq63G7bDF4qS85AAAk6rA4wAkodvi9q7B4aS10GqV3mOFx8LL3fD0 /gAApKzC46q40DoxE7HC7QBGtXaQybTJ5bzO7JGu4KC326vF7LG7y1+O3rzR96i936fB6K7D4T1H VABXuKrD6rrH5J6swmpoZLjL47DG5wBc8Ka/5VxaV6a51zAzNXt8f7DI72NugqC65W6R0ZuuzqO5 7ay+66zD5wA0v6a55rK/1bjH66G15aS64B0AAJe16ae226rD642v6oGj4J6u1yJfrQAAAKe/5SH5 BAAAAAAALAAAAAD5ADUAAAf/gH+Cg4SFhoeIiYqLjI2Oj5CRkpOUlYMUmJk3PTcqni2glqKjpKWm p6ipf5kUN649np8tqrS1tre4tqyvPbCyucDBwsPCmq2dsS0qs8TNzs/QjqzHvsuh0djZ2sHTr5vJ zNvi4+Simq7Iscvl7O3uieevKtXh7/b329OtnNXr+P8An+1CB65ewIMIaw3s1M/gKEwj3tSYSJFi AkwJM5I7x0ndtVKYEoTBQLIkSQUxVNTAqLFltIUNHS7Spy+iBjhNcjbhwAGITx9S3lBwSbTZUEzo 0lmTqYjCCB5hokqVugGDiTVYRWjdKkKGjKNDi4rFRWEMUnS9PvmD1KOK27dV/0y8JZKhbgwoG/Lq zZtgxAiWYwOnWqj0kyQ1eiAohhAlCgQ1jSNHwaCi1TlMKt4IDSu4M8h4hZkaYvUnSZIEqFGDqWKj tQ0csLfozFmCZ08OEQErwsJ7hK0RvQcBx3JJt2da+gh6fGS6ufMET1inmE6dugYNW7ZIoC0BCAcV fxdheXOAAZsQL0iNyNPhzxhBI9gcYOP0Dxb5B8AmyMOb/3FVZYHWECNHDaDHgQgaGIUeAyy2mGSN VVTRGDeQdsgIdcBwhgUR2OEFcZZgSAYDF8FXxhJ+MNDBCDn4kaJvFCRwwRkXUHEGCiD+d4pZZykF imiX/KCHAQsUCdcCdSWp5P+Sa/Sw15NPbPAXZ4RM4YIfU3SARgNedODlCGMAN0IHvPG24h9jgoiF lx3kYMYEXKQ5xg4N+PEADVwwQIYfN6xJphR+RLCBH2fkkSaaWIzZno6S8NjjN7/Ak8kPPFRqKQ9G DCAXXJya4GkRMlR33agsiLBBiYWMYAGhGzglxRVlMACAFFNccEEZAChhKxsVhMBFDwAw8MYUBwBw wAdUUFEGGrh6UUMeERDgRxl5VCDtCzXIekUeflRAQqA0DGFsHlRcIC6JvjH6SDfygLOIX/DG+9QC Yrhmr2sr5KuvvrPlxAESEsBYyH1+TLDDUCO84IcXE/ghRAV+7HnGAykuEUD/DXYwMEEDEA/hhxkM FFyGH2zAAAANZ3g8gXwR+JFAAw0cYIcQgX5bwQF+WOBCGl7YCTGc6q5rzCahKfKDGj8mrcbSDTro NGNQQyjF0xBgIMWUhGDxQbetojlCBBySfIEfQ1CwpR9WpOEHAAUTEMADD1hhhhZJrC0tAw9osSUX WphxBhrSKhFowzhHYPMMAVjR8tgMhFEwF0EL3WNMifwwgAMGZK555kV27nnnRIQu+uhVtPDkXlGl C98PdpiBhn0USHFGBA1bgALZHezwhR8kqN0wCh3QwEYAADxwQAgpSktrHnmcQQPbBAC+sB8NTEED Ft1+C8AXZpDQcs8MXPE4/5WRI5KcKx4B+UMWl1YKBgR7DCB//HvUb//9+NdfF1b8979GAoXI09rQ YIEzQIwBB7xdl2hAMStcaWRksAAAKvAAc4XBY8EKFBtORgYhsM4CO7gSCCi2QZwRYFC08wMN0rAE wVVAfBGYAvnKdwjQFO1CjmLFD+4ghgL48IdALMC9hrgCG+zriCuAQxEKMQY0HOALZyBAGSjQgDQw oAEAAEAaJvAEKRCAAFSIQBqU4AWYSdBFfgjABNJQgQ1M4AtpoMAB0gCAHTTOC2mgoxwI8AUA4DEC f3zDBCrQKwZscY4TEMJ7aNiUyanDGopIQhYmyT73QUB+mMwk/fKHvyV5Mv8DbyhEWbSUBEONYAPs 2UAHuJClMHGBP6zkzQbQgIYHnAwEMGDDDuLEBVQChwvtwcIYsJCHLBFTlR2YAjCVOaYwoGEECVBm MiG3SEbWkEdJ6cdaDPEDAxTAAeAMJ+Y497nPjY50JmgBGJ4Qpb08IQw1UB0hMDGG9+hjJph4AwPO kEUvhGGRmSCQcQRhIWtKY2hpcVcN/3ARecVLDU2jmmMYExmKOgZCjdkDBLBmiHquYoaNGKWhyGQW SdCkLO2YRj6O0a6lJKKaxYFIFrwZxJr6cIg4rZfARDkGLtQgAWgAICJGwAUuYAGkpGjiXl4HU0R4 yT0hOtMjxlCDUzVVPFL/RUU8YEEPINWznkloX6UytQAPlPOscfGUWtdahSegap5jAMMEYGCHmE3h EFgIQbTYgIYXyLMUV6jAGQY72EUpogMMINFVHzECcYXgr4fd59UYgYUf9CABxfJrHvzq1B9wNqQw mUekmmI5IpmWcx5IrWpXy1oP/ICdsI3tOzk6zx2cwU5X8sMB2jMm3/QUBn7QwgEmMIO7+gU+X03X obzml/fwhhAjKIMd/OACLWjBBXEKE4i065sR7MBF2QXOV+2TI0SFB15TWFyiwgSmsgwTTGB6zxSk 9YEzrbcsawITFoawhA9MQW1soEEEHjAF9r7HL1iwgBkOAEAxDZSg7PIR/5AIOgLEIOjCCcKwhvXw gw57uMNqqFBAR8MDGCSOBDIDQAfykIMDDGEHO/AYGcAAAuoKIQFDyAEWcCwELAhBCRSYQg4Y4IU3 YKEMchBCkYV3gDcsikUBOAMJaEmDxoahDE0ekxCOlwQl1MALF3jDEMAQggOAYEVfPgAwRzCFMpdh B9HNwQsOkAMv/CAEctgAG9jwBODw4AAWCIMSkiDfllkgBzmogYvhHAb5nPkJ0vLCEyxQ5BZpAQRi zoFfchyGhpGoA1sewjMlNbmuCnQEzkl1EkCwgG+K89UOsKkNCnCDmWxgBnYCABvCMAU3onEGbwiA izTkIjv84G1oYFsDSP8wATtIoWXCfsAGCEDXFOHaDgG4AG9z8DZZAYDSdngAipbQ6OkG4At2KIML HgAoMph7CGHYU+ssQIOGCdtbZBC2H9BNBQAEwN0RC4MUUGQHdKvoD+n1gxRgwPDpTuAN+faDHQ7g hel6qNkh2J0fYPCDiN3VDzNgAxovsDU72GEGfpkhu7S5TVJDRNVJAEOrYW1TIDqAB0lAKoVvgGsX keEJIUsDG1q2MuqyoWcuOAAaWhaGlsEADWYwAxQaEAEoQOwALSMA1hfGg741OAcoQmMFxkYGENyN Yl7wmMK1AIM6fCxWgWoZG2g2gxadAQotU8LuIjCEhvXbD2kQQp0sgGv/BowsRe1JuBS0sLaRmWFV AAADIBPgux+0TAqrEm4CqHs96tZAWhHowhLMwIOQAYALKh8IV5ezrh0aSMN3uHDs9TCG5iTAOT/4 Aw9+8GDoPgEKUmDAldIgrW2FYfQ1ADwNNp8GGnRA5AzQAtq7RQMhAMAFZtBty8ZghTrNIA3Zt4Bf uP0FC3zgAy+43ckYBwO97QBiIbCu2yNAA7cTQAtLqKIflnC7B6QB1xvjBxRQb37wdwHGNhewJ2gw BSFzcIoXdSRAA1H3By6yBBGQAzvQMFIgYDnzLS6ABh3AeVxAXSTANhawKjDwfxFzMKOxVdo0YaK0 Q63FWpk0ACBwgzh4/4NZ8ANTonPw8QF2kAYRCAZLoAVqkwN58ARLAAObNwMHo3wREXUpYgbAJQVC EABmAAC3s3VSsAF1QjsTEAF+xSJ2IGU0cIamVytTqAUkYAW3FX9aYH87ACgRwHgTEIYZtEVhyAZ1 cgVT4HdscwAZSDYUgwY0cECJd3lRRwM7AIFXAAC4RgaKo3AcaAFTQF0gyHmO84Fs8wGrQgZhGAEM gHo15IIKdVDrQ0mqOEmstjkGQHMGwHs+KBw/kH0EEIAVIHIVdFsGA3I7ID4wwABs1jJ+AAW4BgMo 5gcEQCfap3AJxwBP8ABkkARowm0wEAHYOAHqp4YAUCcEQIzx13bKOP+Hg6NbL2AGBOB2M/AEFWAH coBrfgiIujWIH9AyW+QiDqg8i7gDAaAFVOAHKBAGVOg93ZIDtfNdZuAFm+cHcnBbnFgwuGQHFMAA GdMBIAUTpgYJJ8UKqBZrNedDHTaLWaMEe+IiaXAFyVZsEZAHf7AExcUF0iKAz1dwz9MteZAAPYc4 DNAhUsAbapNGJOIeOQBcJmcH/JcieXABGfNfS/AFdSIF0og8MbQqEfAGPQcDQ8CAxRY9X7AE2wIx SgAAdsAGf0gygPM2txWUXHB5MGAGUzAFbcmMaXQASTldANBsFoAGt2UHCdAw1OOSNIAzKTIEwAVy j2U+j3JDpbiRjPn/A0lwB5AZmZIZkow5Q1hQA5gnBaOWBz9gAVewAQx1BY+1HhbQk3/wBleQBMAR Ajw4AjVgASGwAVcgBFdwBd2FBiFgAadBUAkgmrV5BdgSAqo5AiEQBmyUA93nBzlQBz+QAKzpFyFw BVgwhxZgZH/ABZ2Jkr15BQB0Z39xBTxIASHweRWgBFbQMd0lmlggmn6hnhuQm0nQHjXwAhbAe7Y5 BmFQmtGEeWhQm0QFnx3wBqVZZS7nDemDDwfWXGEBL/R0XPABI2HiUemSoENxYBDmoBDGXM0VX2iS cGgUAaOGJsIhHPLEoGHhXsolHFzgly7SAGhQTd3lWyLqFOkCESla/0/N5TUi6h7NlaCrgJhbdaCI kBpEWqRGSqSakaRK+gZH2qRChRBDsQMbZCwvKpKiMAVTygDxZKXN4ChokT5OGqZimgBLuqRjeqZo mqZquqYJ4FMTwaZwihpu+lNxWqdG2kiTkw7K0AIYoAB++qeAGqiCOqiEWqiGeqiImqiKuqiM2qiO +qiQqqgxEANq8AZ/JSCP1AIlIAGc2qme+qmgGqqiOqqkWqqmeqqomqqquqqs2qqueqo6wKlbQASJ Mk+PklDWIAE6wAK82qu++qvAGqzCOqzECqx9cKzHyqvIuqzM2qzOmqzKuqzFOq0skKzISq3V2gfZ qq3Y6qvN2q3Q2v+tw6oDu0quEiADGIqRatECuvqs7vqu8Bqv8CoBPQEEJdAHOlCvPgEEnLqv3qGr +uoTJRCrm6oDyEqvAiuv76oDtcGw/KqwsRqr/GqwCnuw9TqwFcupFRuv2coCsSoCYQBhpigL7bqx JnuyzpqvOAACCNAFMsABEoAHRjCzM+sVNGsEeIADQCCzRgACM8sHQCADe7AGBVsCK9uyIsABFIuy JcAHOQAEB2AEOCAB8cqwIlACIoAARUC1G1sCTcAHCIAAMQCzzLqty8qpMsC1HBut8OqxEqAAQkUY DVGyKFu3J1sCTiAAAnACehsDSKC3gCsAIrAGgau3cIAAhQsFImD/BTFAB21QAiVQBHrLtwKAASXA ArVBtviauVTLsJCrtLWBBHyLBHIgAFMLszwxsAybujoABFZwBD4guTEwsJy7uZ+LsccqAVvAtydw BAIABaDLE1QrAZ8Ls5x6BHXgA6tLtsRbG2pbrWa7sDqAA7W2chJGt3abvVXbBHsLBD7QBCeAAEhw BFbgA+brAxxAuCtgvpL7Aeabt0XgA0CAADhwBykgBEUABEdwBBzwvScQBLXhBCTgBjIwsBwgwAS8 qXWBAXEABE4wBxkQBEeABCKwB1QbBSIgBUxwtZHLBCQwtoQrABmAA3tQwBwQAyQQBxqwqRhQBDGA BhmAu0AABQIg/wM+gARQcAQaAARrkMJ9wAFFEAUywARxsAUlQAcCoLVIIMBxgANAPABFQMBc26sV y7BSILJn8YLYq71c7KyRW7lA0AfbURv76wZzMAdukL4C0AVKMARBILiQqwAC4ASQawVasQVM4BUC wAdIIMb+MgcCEAR8G79MEMiDjARvvLdy/L97iwRGIABbIAMCcASIKwBNIAKBjLgZgAF6ywRVIAAH 4AOIiwC+KwNAoLekLABEu7lHEAQ+IMZeCwRITMpHIMuZnMRIgLhHEAOcnMqkC7hFcK8oG6vMoHqQ 8glb3MXKfKx4K8L3mq884bu928pqDLgnEMx9UAJyTMcSIAIf3HkGAwAEkosBHICv/asBa3zDgcy9 XaDOQYDIAqABojvB4zvBj7wFKSAAV+ADHyC4HDAdUZDOJ3ACPvDJToADAkAH8ovLgewDkowH5cyp SRzGDIsEJRDIHIDJJFHDPvDGHIDQH/C3QSDOlcsGAjC2yQyxElDMSEENDREIADs= ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/cCERTlogobottom2.gif R0lGODlh+QAVAOYAAMfU9AAAptri+fP2/qa+5KS95MzV7Imi3Bxdq+rs8RVcqqS85ABVpVd9wIae 0gBUrVyG0jlosgBBogAroVSAzwA0mjhwxeXn7iJfrABZuYucxAAAmQBkw3qY1pqv4n+XygBRsWOF yQBctEt0uipuxqG74+rx/+/z/qrC5jRtwgA6oQBKrbDA6Ojt9/z//wBRpEF0xdXc8aS66QBIpFR4 vnmLw6eyz6Ky2wAzrLTB4fb5/+Dm+QBZqcPP7G+S1yVnva695AA7tK/G6Up7zObt/2SL0wBgvMHJ 2QBGt/r9/73K6wBcrdDa9KSy0pip1AA1ojNlrwBZr9Td9eHo/HeRyuXq+cLP9EJvvPj7/wBFqQBd vwAeoSJgraO846K846S84wBXp6fA5gBQo6O85BVaqRxnxb7H3KOwzQAntH2QvdPe+QBRt7zM83+c zbrG5LjG6L7J5+/w84+jz+rv/qe44qm00a+61gAAkOPo+CJdrDhnsBVdravD6CJfrf///6e/5SH5 BAAAAAAALAAAAAD5ABUAAAf/gGAIGH2FhoeIiYqLjI2FDD9+cBsqAVYGAToAdxudFT5+JAECfjAq XBIOflQzfWJREFczDBl+PRsSG2wGQ35ynXhzI34dExsJJqPJOCYXdwFqJwFHfmsWfmcbZ6E0AwMx fjkbRHF3RX5pIavGJ1UBLgAbNH43T1wKOFM6ASobB1Uw/JxIkODCgQN+tGyIoWPCsBsq/AwgeMGJ DT8/ZmBA0IcQIUeGNs4o8ecPgZMnCxTowrKLlxIlBH0ESbOmzUJbevgBUuONHyaZ8IT48MFBHlAU KuAY4CcDg1SrWvVRwABMoQlKwtVw4ydGAD87Jlx787XFloBKNuw4gWMCk4RX//wko2bNT50NF7Xo RDNMnIk4G85pCPIzAAU/dL7Ga0DvSSEJHbrWcOLHD7MWG2BYWePBD4cNArA49GMngAnMNKwgsRPq Rcg8sGsiILOkQEmUBFQuWMDSy8uYg24KH64ITBYWlf0omYGDSPLKDiD4gSBGgjoAEqCyKp4FSPIe WVRQ0eHCjxQQKoqQN79iiwATOMSkYDrlBJEAZpoGbLKhiZ8U6rhQxQBA6SSAdBps4EAS5RkgQRBY LEaPCoUgoIIDTIF1xRYhMAgWDp1xsIUUA2QBwgl+yJACFuVNMQFrFrhmSB5c5DETI3kg8IADfNyW kkoqteQbcDcSZ+RNPEywAv8HIEwAxhJGaCGlFhwsEUWVHM2gRQpLIHBlFBwpwsMTSzYpiAQrUGCB CgwggKaaKoDBgxFG8NDHDCsM8cAaHDAgAgdgXCkCD39GIYERFKwAQhk85AnDAxxEoYAKIFCQQpw8 cFCnoGQYYqEEWmTwhBgI4EkBDE+8UOicdTLwAAU/vLmmqlgeApuNRSKSYxQNCHGbSSgB2dtvgtxq 7LHIJqvssswqSwgPDPBASB5gMGCttQog0CYCNoIBho1UKYCBs31AK20feZQrBgMKdKQuu+jy8G26 PIjBAxnfkrEtA2TkoS9HDIhBhrx5KLCutuK+2y61ZGzE77FTVbWwumK0+y//BgSra1W9FffxL7fN IouAlyOEEUZJwOYG5BdCvvTCHjDHLPPMNNds880456zzzjz37PPPQAct9M5WPhCFDyajnHIBKvPm 0m9Q6CH11FRXbfXVWGet9dZcd+3112CHLfbYZHcdQRsOyMDHySgTsLRuC4wxZAl81G333Xjnrffe fPft99+ABy744IQXbvjhg6PAttIpqxzk0y8xLvnklFdu+eWYZ6755px37vnnoIeeOW5AFrCbSzCR JPrqrLfu+uuwxy476cI+DZPsuOeu++6899427QWw7AXqqvtu/PHIJ2888C3frvzz0EcvvebMu9RF CZFPr/323B9PuuO8vZR9Uvfkl2++6Lip/AXLthd//vvwxy95+kCG/5v8+Odvvtu0t3S98/oLoACh FyyVfOF0thugAhfYO/oZcFgAZKAEJ8g64AVJbkOioAY3+LkCPhCCgQAAOw== ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/cmidspace.gif R0lGODlhAwADAJEAAKK746K846G74wAAACH5BAAAAAAALAAAAAADAAMAAAIEjIWABQA7 ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/newimages/searchlabel.gif R0lGODlhMgATAPcAAHl5eYSEhI+Pj5ubm6ampqysrLe3t8PDw8jIyM7Oztra2t/f3+Xl5evr6/Dw 8Pb29vz8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP///yH5BAEAAP8ALAAAAAAyABMA QAj/AP8JHEiwoMGDCBMqXMiwYUMEDwr8UwBhQIAHDAIQWDAAAYQCAhxAEDAAggKBAiAsCMDAQYCS J2E6nEmTZgEIDUQe+DfggQORBP7ddNAAAoJ/ByCITNDT58d/BnAWfRCgptWrWLNq3UoQAgOHHnFK LOkAgcevBRYweAAhwT8GI/+lXFAQblW4DAcQEEBQI1+BGgMIICCYMMHBVeUaRsy1sePHkCNLntzY wFGHHREERXkAwYCBAjpL/Oe3wM4AnTeXTEDA80K4Fg98dkB1rlAEVb3+S6CyKu0ALHfyProAwuaE AxSw1evVLAIDNxe0fopTIAGjBav/044wJITvbqF+Ezcpl+0DtuJ3CuQN4YGB9PALBgQAOw== ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/srch_adv.gif R0lGODlhQAATAIAAAP///////yH5BAEAAAEALAAAAABAABMAAAJWjI+py+0Po5y02ouz3rz7D4bi SJbmiabqylLACxixfMCzPQdwzeuy/Xsxcj2fUUHM3WLCI+3ZIEKVzeLx5sNad0OkFepUTscI6QIY rHG/a7ERFzS3NAUAOw== ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/1pxinv.gif R0lGODlhAQABAPcAAAAAADMAAGYAAJkAAMwAAP8AAAAzADMzAGYzAJkzAMwzAP8zAABmADNmAGZm AJlmAMxmAP9mAACZADOZAGaZAJmZAMyZAP+ZAADMADPMAGbMAJnMAMzMAP/MAAD/ADP/AGb/AJn/ AMz/AP//AAAAMzMAM2YAM5kAM8wAM/8AMwAzMzMzM2YzM5kzM8wzM/8zMwBmMzNmM2ZmM5lmM8xm M/9mMwCZMzOZM2aZM5mZM8yZM/+ZMwDMMzPMM2bMM5nMM8zMM//MMwD/MzP/M2b/M5n/M8z/M/// MwAAZjMAZmYAZpkAZswAZv8AZgAzZjMzZmYzZpkzZswzZv8zZgBmZjNmZmZmZplmZsxmZv9mZgCZ ZjOZZmaZZpmZZsyZZv+ZZgDMZjPMZmbMZpnMZszMZv/MZgD/ZjP/Zmb/Zpn/Zsz/Zv//ZgAAmTMA mWYAmZkAmcwAmf8AmQAzmTMzmWYzmZkzmcwzmf8zmQBmmTNmmWZmmZlmmcxmmf9mmQCZmTOZmWaZ mZmZmcyZmf+ZmQDMmTPMmWbMmZnMmczMmf/MmQD/mTP/mWb/mZn/mcz/mf//mQAAzDMAzGYAzJkA zMwAzP8AzAAzzDMzzGYzzJkzzMwzzP8zzABmzDNmzGZmzJlmzMxmzP9mzACZzDOZzGaZzJmZzMyZ zP+ZzADMzDPMzGbMzJnMzMzMzP/MzAD/zDP/zGb/zJn/zMz/zP//zAAA/zMA/2YA/5kA/8wA//8A /wAz/zMz/2Yz/5kz/8wz//8z/wBm/zNm/2Zm/5lm/8xm//9m/wCZ/zOZ/2aZ/5mZ/8yZ//+Z/wDM /zPM/2bM/5nM/8zM///M/wD//zP//2b//5n//8z//////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAANcALAAAAAABAAEA QAgEAK8FBAA7 ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/cnav1.gif R0lGODlhEQIXAMQAANTV2ZCdtkNikMfK03GHrrG3xeHh4qertsbHyvr6+mxwd+np6vLy8ri5voCC iKioq1RWW77Cy5+ksIeKk62wuTc9SCUqMJWWmOXm5oySoDpVfEpvpf///wAAAJmfrv///yH5BAEA AB8ALAAAAAARAhcAAAX/4NeNZGmeaKqubOu+MCvGdG3fuD3nfO//qh1wSCy+RJukcslsOp/QqHRK rVqlHY92y+16v+CweEwum8/jLHrNbrvfbTV8Tq/bw6Orfs/v+/tyd4KDhGaBhYiJhYeKjY5veUoR AwQbBAMRlwWWAwWaSpcHSZ2XmJilmAFJpZucpqqfn6udGwWmqbSomBsZk6p/VmoUAMTFAAdaxMkA CFrDA1vPHtISxM0eA8YADczR3dPf3c8Nj3PCxhTgxsvpB9rL0OrE6c7f7tD35eVy2ejoW9bq4duW DJqBgREK1jumr6GHSKM4bDrAARoHAxsCXNSIMYlGDqo2chg58iNJDxlJ/1YyOZIAx5QdYW4wQHJk hIspa7JsBWyKsJoVK3poIJToSAlDNzrbSBRD0qMeMAAdoFQqyQYFRqa7mJVkQodrftY8QAGohJoR yupUC3Ia0HQM1nJg4JYu2ERyEkx967Zk3b5a5lKkqzYwXZokAdx1BHHDBJwAOGR4yfGlx5EMNohc 4MCBAo4WEEjcQFUqBZgO4rrEaVlmhQ40HXTIwPriBM83ATgg15PKT86eL2yMfAHbRYluDURjOvw4 OQiwOcg+q7xpBeEL1NK9KFp3gweLz/zuQNQiBgsQQle0AJ7ieQgVPEQ2nZx8xbIGYDOgMPjAzQXh LbLFazRBh5190MyHnP97fSXgwUXUNfggBoN1YAFBASLSmAYLcEAAAwwIQNlmSmgU13wsOQWUAxvE 9RhGLAEgU2ut0aTKiCRhoABiGGTQm09L5ZiagyA64IGLEOK3XHUbIamcFjS1A6Fo5Cig1VwczOcA j+BlmEaQJDlAUU0KxHXRBWOeNFIFSQKlAFXkWNCBmEAB6OUdh3QoZU1GrtkmgIMFRWGbcZV2Uzrb XHOnII3VElQEM5J4WQM8cnRbnwxEFoGIc93koaWRbQUjTpfFZGOkwDlAQGcPzPUjFkul6hZVCZXF AFUckAVhrMnZiisyUeWaXFLxCCYRl6zOtSgesYaagXsQKACBBPAJl+v/RdFO22lJgzlbHjb4zKWt ncua04WedTl71q3ctvkAl+7yWBYCaZaLZwdMWDkSiy1WJBU5nRYbQZmbTZLQRRXEFYCnV5kYAbq1 3VqsqSChegt3rr4KxW/FeOBAmMahZSsxDdCWAAAdNoCrV1AKq+THJ9NEb0UEGzCfaHbZy8VvbII0 WD/zGbVuP6Kh1SoGPUug76/uTbarzm7k6TLCRxXNcpsIWDDSoICut/XSrbYFNRyNCjCfAElM0GEC A2jA0sGbYscSSDgd3aFsL8bI6ahXU3xjbTVBEJltGm8M5lEZaHmkdHNyhdYFF6w9AMF47xrlsLdZ hYAC82aAnQKDY2Dk/9ha/ESYsYEjxgAEbGHGAXT6DlZXBo9pRefpOZOOxiFxSXn62rBfeTo0j+2n 7LweK0vwRZ/pHjW+TLxmgRIayNlBBRsIUIIG2muwgQbXa1+C9tiDb4GcaJsv/gjTk5/99u4n8Rra 7q8/ggDWW+B94U6oMYEJWoCOBbQgpwl4zEL/I8FnHGC9aRXwgAP0AHQM+L9peayBB/yMAjoAgQy8 BoHO89/1PLDB2QCwBA7IAAomk0AVxqeEBxzBZ1zoARo6b3ddeA0LR1jCEezQhPFRoQavR0MhknCE siGBAW/Ihkbx74lQjCIjmEjF0lXxijvDohadGMUuehEYU9Si7sIoxv+xkbGMOnPiwjzBBF0EIBYD EIUmdDEAXvjii3gMRhdUFg8uuCMgf5wHQL4hEC0AjWSE5MZXAqmMajCEiYFQJFK8EBBwfCUc9iBk NsghyXFYciHkKOMhJNmFYfijktKgBinhYUhtrJKU1CCkGaGnhEBlZglvs0yHCBAZpABlJ3kMZhQC Ma8FPGk5OUqTViSkBTMdRS9oUdbiTtK6a7HshvzAUu7AhJSuiOopDkqKU5ayn951xSZZcco5hSLG SGpzj2+pCYDSKc5gYaabJ7FnYixXE6ws82mzZAJFGsCAmJRqBG4jVfGylFDgvClLu0GJMCfKhEP4 SzF+vEgHnpmfbyn/iJMaNcB+CPS62fxJP/y5CHrUk7UuYXM5BD0mQJwjIQh9dFhacMDgINqd3TxA ST39jii5QJSYltI2nsFPBWjiTyYZwDooQxRNoRObLPzpOo5TFkCh1iiTAUABlShRTWTyPcQoICdf qxRF15oE3jHvqOxy0IoexAE2AQhOHnhgsKR0V+QUUJkJWN4CivPSLejlq5M0bALyZqssNWmxf+IC wRiwQC69jEtD5cJhFZDYBhnLAL24z5+olAH4GMlJW7gcUJETOyyhaIy0TAkCcJaAsKaEAVghKwG8 gprbrOp2bF1rIBJgs7nkTpm3U9e2QFJUcAELXQxq7mwlAC1pUQur/2Ib41Jma9zE+kovuqLU1r6b KyVtIbQly+ntzJusbVZRDuWhrXeROoHVpuVP35qEruL63KkxqVgJKIt4t5rG2GYFAReIC13EagAN eE+X0ulQABxmMIzdMrjClEOrJicVctVnTkqt2lSWBpW9DovE5Q0YMbIKSUMKRcH0CJlX5lWzlaFz LiRz8TVu9ln5WDizxmkGjJcjsWPgOC6QO2zKijc4/0ylZXxNXsxEu7m4yJSrsTWbXgxAAdEx+MsH 1oCVAAQUwW2ZXxgOphx0ipkBHFeafzmaXoKXANpBkwKj691f7Gy7appZXC32WOjexYW7NW5QCMaO oV/UuniI5hqgO9WzkiJtGyCzmbhdzuhYkjkBz0lOAZ1eG54Xzc8oZ65TnKuI5whsr0Z9UH8WQFsS 4ve+8l3vfbE2Af7Yt7805zEQ8ElPekZXwxFqgYY9nE0MY9iB5nlAh8WOD7NneEIlBlqCI6iAAiyw xLzOCYL/4+wG0/Nt2XC7BJw9Yro9yL4UcrCGryY2FoGd7W13O4FKRHdOMXhBGXqbghYKoLIruO8R dNCI4w5hbH3NcP4dgnZo5GrErz1x0nVACEbIuMaNgPGNe/zjOOg4yEdOchmU/OQoT8EHQgAAOw== ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/canav.gif R0lGODlhDAEPAJECAP///zNKgv///wAAACH5BAEAAAIALAAAAAAMAQ8AAAL/jI+py+0Po5y02ouz 3rz7D4biSC5CiabqyraScLryTNd2A8cqcCs8+ettgsJXzncIApbJZmDJlEB/02T0CUVUn05p1vAF X71R6nbrVIqv564FHVZj4+MzWpGDIcH8PrPsQNSnlSBnuMeFWLjo5+Y46EYkmEY1WLk4qUjImAgY mcaQeZCnV9jWyGMmGsrW+nVoGhZB9/oYyLa5tpfaSSm4OotYyRt5qolAWpp72dvYAMxsuSa3vCD6 C4pl/RAtGerHHM0HDJnbdVlXnXhskKx8bkWtSh6vVOu8bkxvnl8/AWfuTrNOtMJlgIMLkjdLsjK5 e4diXwuJFygW+XaRwUOIIBk7evw4YyNHkCRLmuQgcuTJlSxb4kmpw6XMmSdhwigAADs= ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/inv_table_space.gif R0lGODlhBAAHAPcAAP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP///yH5BAEAAP8ALAAAAAAEAAcA QAgLAP8JHEiwoMGDAQEAOw== ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/jpeg Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/logo/uscert_4g_sm.jpg /9j/4AAQSkZJRgABAQAAAQABAAD/2wBDAAIBAQEBAQIBAQECAgICAgQDAgICAgUEBAMEBgUGBgYF BgYGBwkIBgcJBwYGCAsICQoKCgoKBggLDAsKDAkKCgr/2wBDAQICAgICAgUDAwUKBwYHCgoKCgoK CgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgr/wAARCAAyAGQDASIA AhEBAxEB/8QAHwAAAQUBAQEBAQEAAAAAAAAAAAECAwQFBgcICQoL/8QAtRAAAgEDAwIEAwUFBAQA AAF9AQIDAAQRBRIhMUEGE1FhByJxFDKBkaEII0KxwRVS0fAkM2JyggkKFhcYGRolJicoKSo0NTY3 ODk6Q0RFRkdISUpTVFVWV1hZWmNkZWZnaGlqc3R1dnd4eXqDhIWGh4iJipKTlJWWl5iZmqKjpKWm p6ipqrKztLW2t7i5usLDxMXGx8jJytLT1NXW19jZ2uHi4+Tl5ufo6erx8vP09fb3+Pn6/8QAHwEA AwEBAQEBAQEBAQAAAAAAAAECAwQFBgcICQoL/8QAtREAAgECBAQDBAcFBAQAAQJ3AAECAxEEBSEx BhJBUQdhcRMiMoEIFEKRobHBCSMzUvAVYnLRChYkNOEl8RcYGRomJygpKjU2Nzg5OkNERUZHSElK U1RVVldYWVpjZGVmZ2hpanN0dXZ3eHl6goOEhYaHiImKkpOUlZaXmJmaoqOkpaanqKmqsrO0tba3 uLm6wsPExcbHyMnK0tPU1dbX2Nna4uPk5ebn6Onq8vP09fb3+Pn6/9oADAMBAAIRAxEAPwD8J6KK 2fH3w4+Ifwp8RyeDvil4C1rw1q8UMcsuleINKmsrlI5FDxuYplVwrKQwOMEEEZFf1O5wjJRb1fQ8 OzsY1FdD4n+EfxX8E+LLLwF4z+GHiLR9d1GK3k07RdU0Se3u7pJ8eQ0cMiB3EmRsKgh8jGa9AuP+ CeP7f9pavfXX7DHxjigijLyTSfDDVlRUAyWJNvgADnNYzxeDppOVSKT2u1r6ajUZPoePUUskckMj RSxsjoxDowwQR1BHauw+E37PH7QHx7kvIfgV8C/GXjV9OVDqCeEfC93qRtQ+dpkFvG+zODjdjODj pWtSrSpQ55ySXd6ISTb0OOoru/it+y1+058B9ItvEHxy/Zy8e+C7C9ufs9nfeLPB97psM820t5aP cRIrPtVm2gk4UntW34X/AGDv25PHHhyx8Y+Cv2MfizrGkapaR3WmarpXw51O4truB1DJLFLHAUkR lIIZSQQQQaxeMwapqbqR5X1urffcfLK9rHlNFd7L+yr+1DB8UU+B837Nvj9PGslp9qj8Hv4Nvhqr QbS3mi0MXnFMAndtxgE5rc8Q/sD/ALdfhHQ7vxP4r/Yr+Lel6ZYW7T32o6j8N9UggtolGWkkkeAK igAksSAAKJY3BRavVjrtqtfxBRk+h5NRXqvhb9hP9t/x14asPGfgn9jX4r6zo+qWqXOmatpXw61O 5tbuFwCksUscBSRGBBDKSCDxXM/Fr9n349/AK5sbL47fA/xh4Jm1OOR9Nh8XeGbrTXu0QqHaIXEa GQKWUErnG4Z6inDF4SpU5I1IuXZNX+64OMkr2OQoooroeghH+6foa+/P+DmWVX/4Kt+JMygkeBfD AOW6f8Si3P8AWvgQ88HvX6peFf2pv+DoHSzD8OdL8eamraJ48ufhyo1jSvCLtFrNhpZ1GS1e5uoi XjXT4jcLdu5gliXckz189nEa1HH0cVCUFyxmmpz5NHy6p8stra6dUa02nFrXpsdR/wAFBNe8T+F/ +Dg79nDxb4N+E+qeO9R0jwX8Pb+DwloiRveaksFsJXSASsqGQIjuoZlXKjLKOR7T8If2uP2UvjL+ 3npHg74Pf8FpP2wNO8d+I/iYYtC8F6/o4n0Oz1Ca8bbYz280jRvaxu3llCSNiYBzg18CeJvgz/wX F+Kf7YkH7W3irTdfn+LuhfFGTwXbeLbnWtGs2sfEGmaU2om2QealslumnRtcLMFFpLDlldwxz7tp 37Xv/B0nqviGbwzZePb6C/g+JN74CleTQvB1r5Wv2unNqc0HnvCqqgsUa5S7DC3eMb45W4r4/E5O p4ajBV6V4UrN+0S6t3acJpx8/db1u+28ajUm7PV9j5K8CfBP9i/Xf2ofjJ4S/wCCiv7XPiTwNf6D 40vbaw1fwb8Pjqaa1eLfXSXkjQo4FqgZEdV5GJSB92vpL9mX4q+Jv2af+CG/7Tfjf9kj43eJtFNh +0podl4c8ZaNdTaVqN5pvlssTv5TB4/Mi2s0WSAWI7V8O+Dv2Wv2p/2lNP0r4zeGfB8mvxeP/izB 4I0/V7nXLOKTUvFV8FnjtXWaZXQyeaGM7hYQWO6QHIr6W+F5/wCCvv8AwSK+BmseO/hP8bfD3gXT vEFpp+u+JvA0XiPw/qurR2Esv2ay1aXTLjz5EgkeVI1njU8TRb8LJGW+gzPCRq06dL6xGU+an+7l JKF4WuklFtX801d2tsjKEmm3bTXUg1r9qz/gpB+0n/wSA+JM3xb8YyfEL4bWXxb0VNc8XeNfFlzf 6zpN8IM29taxzSELA+4l2GTliMDrX2F+1n+0V+zR8JP2Zf2YtB+KP/BQ39qD4V+K2/Y+8IXOj+FP g7qbQaHdKbe5ENxPtnQiZ5EaN2C58uKPnivky7+MP/BZ/wD4LF/Ambwl49+O2la54Fg8X21hpGne ItQ8PeGIPEXiYxFrbSrLCWp1C+MUjOsALAbkB2vLCr+l/s/ftH/8HEei/sy+AtL+Bvx50iPRrbwz pUPgj4d3Fv4UbxDB4ae5i0yw1L7Dd25ul05p3iiW5l42MJ2xAwnPmYvAXjyuVKnKNSTcYz5UuaKS Tbpy19139xKxcZW7vTt/wTJ/4N0fjF8V/jX/AMFg9L8ffGr4x+JfEWtN8NPEkMvibxHrVzqN7DCm my7SJZXaRhGCSqhuMcYr64/Ye1Hw7+zn8FfHP/BSPW/+C2/xR/aX+F2h+E9Y8N654Jfwp4gla2v7 u1KW8l5bXl7MbWPJBWeaFY8NnzFHX4z+Pdx/wVL+CGteOv8Agpr8Vf2zPALfF7wFqWi+Adet/C2v +Fb+8tIdTt9ZhurKeC0fy47q3bTxE0KW8jyJcTSpJss52Xzr9j79n/8A4K4fst+C7j9oT9j68g0i fxj8PzqOqeELPxHot5rGqeF7i6gtLe9l8P3ckk91bXFzOsMBFvJIzNlVVZomljMMthmLnXVanBSU Ict1ytxu5RUnC8dGmpRXk1sEJuFlZvd/1qe9f8G5X7YX7WHiT9pnXvgp4g/aU8dXnhDw58AfFEmg eGLjxVdPYac9taILdoIDJsjMX8BUDZ2xX52fG79qH9pD9pq50zUP2ivjx4u8dT6PDJHpU3izxBca g9okhUyLGZnYoGKKTjGdoz0r6d8Ifsff8FT/ANhPxl4j+OHwCuvDEN8vhLxPZ+M9Y8B+K9A1a20i Kyt459d0adRJJFFe29u6yvaxAy+SkkkO+OKR0+T/AIqfBz4g/BTVdJ0H4k6RbWF5rXhjTPENhbQ6 rbXT/wBnajaR3lnLIIJH8hpLeaKYRSbZQkqFkXcM/Q5XhMvea1cVRdNqSjyqNm01dSe2l7rVb9TO cpezUXc5iiiivpnuYhX3t4l/4LxfFDxh8L734WeJvghYahaXn7PcPw/Nzf8AiCSeVfEC6ddaRN4u 3PCS17PpV9d2ckZOWE2/zfvK3wTRXFi8uwWPcXXhzcu2+m3b0KjOUNj728S/8F4fif4w+F958LPE 3wQsNQtLv9nuH4fm5v8AxBJPKviBdOutIm8XbnhJa8n0q+u7OSMnLCbf5v3lZ+uf8F6/ix4j+G9x 8ONa+DFndQzfs/2/gKK+uvEUss8PiNNPutJl8YB2iLG9m0u+u7R0JyRLv83IKt8DUVxLh7Jkv4K3 vu9/vK9rU7n2H+yf/wAFO/hH+zT4Z8OeA9V/ZEvPEGheC/il4a+JPhWzt/iO9lLH4o03S4rO7mup TZS/aLO5njN2lsiwvbsVj86ZAwff+Jv/AAWk8QeL/wBnO++DPgr4Qa1oWq3V7pN7p17f/EWXVtG8 PX+n6omoJqukaXdWrHTdQnaNUuZIrn7PL5twy20XnEL8O0VdTIsqq11WnTvJNPWUmrp32vbda6a9 biVWola59h+Gv+Cu3inxt4C/4RL9uL4LWfxzutF8cL4x8F3PiPWjZWtvqq6d9i8jU7aGAjUtNYRW kj2iNbO7W20z7JZEbs/hp/wXX+JXgf4cfD7w3rPg/wAd6hqfgDwzofhq207T/jfqum+FL3TNMu4p I5pdCt0Eb372kS2bzSTSWrLiVrNpRvr4JopTyHKakeV0tL3sm0l6JNJX6pJJ9bgqtRPc+jpP23/h h4xu/i5a/GX9nnUtc0b4q/HDQ/iLNpWkeOBpxsvsN1q7T6c8pspmmjns9bvIBKgheKVYZsSKrQP9 bfC3/gpz+yz8Dv2YdO/aK8MeLtK1j9ofS/gN4b8B6Lp7wataS2k+j+IbG5tRPZGwksJI47Wwgdrx NTL3CW1vGLK1kluJB+XdFGKyPAYuKjK6SabSbs7JKzvfRpJNK17ajjVnFn2pB/wV08O+C/G2gSfB 39leDSfA7fFTWvHXxD8D+IPFg1WPxJPrGnvpeo6ZHObOI2mnnTp7u2iidLiVPtbvLNcEIF+cv2vv 2kfEv7X37TXjX9pLxVpiafP4s1yW7tdIhlEkel2SgR2ljG4RN6W9skMCsVBZYQTyTXnFFdGGyzA4 Or7SlC0rWvdt2bva7b6/otkiZTlJWYUUUV3khRRRQAUUUUAFFFFABRRRQAUUUUAFFFFABRRRQB// 2Q== ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/jpeg Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/logo/cylab_alt.jpg /9j/4AAQSkZJRgABAQAAAQABAAD/2wBDAAIBAQEBAQIBAQECAgICAgQDAgICAgUEBAMEBgUGBgYF BgYGBwkIBgcJBwYGCAsICQoKCgoKBggLDAsKDAkKCgr/2wBDAQICAgICAgUDAwUKBwYHCgoKCgoK CgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgr/wAARCAAyAGQDASIA AhEBAxEB/8QAHwAAAQUBAQEBAQEAAAAAAAAAAAECAwQFBgcICQoL/8QAtRAAAgEDAwIEAwUFBAQA AAF9AQIDAAQRBRIhMUEGE1FhByJxFDKBkaEII0KxwRVS0fAkM2JyggkKFhcYGRolJicoKSo0NTY3 ODk6Q0RFRkdISUpTVFVWV1hZWmNkZWZnaGlqc3R1dnd4eXqDhIWGh4iJipKTlJWWl5iZmqKjpKWm p6ipqrKztLW2t7i5usLDxMXGx8jJytLT1NXW19jZ2uHi4+Tl5ufo6erx8vP09fb3+Pn6/8QAHwEA AwEBAQEBAQEBAQAAAAAAAAECAwQFBgcICQoL/8QAtREAAgECBAQDBAcFBAQAAQJ3AAECAxEEBSEx BhJBUQdhcRMiMoEIFEKRobHBCSMzUvAVYnLRChYkNOEl8RcYGRomJygpKjU2Nzg5OkNERUZHSElK U1RVVldYWVpjZGVmZ2hpanN0dXZ3eHl6goOEhYaHiImKkpOUlZaXmJmaoqOkpaanqKmqsrO0tba3 uLm6wsPExcbHyMnK0tPU1dbX2Nna4uPk5ebn6Onq8vP09fb3+Pn6/9oADAMBAAIRAxEAPwD9N/8A hsX4r/Gf/gr3r37CXw88YT+GPCPww+GQ13xjd2mn2kt3rGrXTWRt7YPcxyiK3jt7xJd0ahmkDKx2 4B0r79vnw/8AsW6XqHwj/be+K8/ifxr4Z0C98W63rPhfwjMkaeFTqzWdpf3CRosSyjzIY5YoSxDK zBMHJ3/GP7Cur6L+3w//AAUA/Z/8d6TofiLXPBR8L+PdB17QnurLWrdZIJLe8R4ZoZILuIW8UZZv NR4o0QCIgufkj9rL/gn5Y+IvEXijwl+1H/wVn+Hb698QPANx4fS0+I1jbW0+m3cuqLqDXGlWjanG IFKslvsAZgioS0mcHyJzx1BSlbVyla70s/h3fou979z9My7C8KZvWo0JS5aapUuaMacnV9pG/tXz RpzbjrKT11i4JXcGl9T+LP8Agrp+yV4N+Olz+zpcN421PxLZXunW92uieCbu8tohf2gu7SR5olKJ HJAQ4ZucE5A2vtg8Jf8ABYv9hzxZY+EvEbeP9X0fQ/Hmg67q/hXxHrugT29hewaMJW1JfMIJieBI JHPmBFcKArMxCnK/ZV/4J9fEv4NfEz4rfHXXf2hvDHiK8+L/AIB0DRpI9G8HyWdpYS6XpYsIbmIm +lM0bqd5TK9sMBXjN/8A8ECLnxJ8E/gp8BfHH7T1rc6R8H/C3jLRnubDwQYJ9VXxAk8bS5a9dYGt /NjdQQ4kZWzgNxMq2cuPNGCu76afzJLXm6xu/VGawXhtzulPEVIpKCc05O7dGcptR9krctdQglfW Lb8173of/BYv9h7xHcJoWl+PNWHiK81Dw1Z6P4Uu9Fkh1DV38QQxzaS9rHIQjpNHKjs5YCEECbyy VB8u1T/grT8IviH+0H8NfF3hj9p/xD8N/h1HceKoPEOheMvhSyWvjAaXZmW5mh1GTL2iWbqyuQF8 yQGP5iMV57+0P+wn8Yfgd8NPgV8J/CHxE8B6Xd6brGnaFeeO4PhJGmkuml6fNJY6jrEvnvcxXRng tvIkjlSJbhmz/rQAmm/8EnPGf7X/AMFvh54d+OvxG8F+C/D3w3/4THw9pafDzwJJpdp4i0vVY4xB qUMMssa2UomVpGTynSZw7hmWQO2dWtms1yKKbVnpor3Ts2pXVl9/bWx62Gyjw/w1P61KtJUpqcbv 33FOFSCkoyo2bc4rlSvKClfmTSkvpnTf+Cgnwk/ax+FHxO8IfstfGLU/DXjvw38O4dbsrzV/DoE9 hDqOnC70vUkt7lGiuIXSWGUofmUMqOqM2K+P9P8A+Co/7asv/BJz4sXer/E2wtf2ivgz481PQfGO vf2TYOI7ewvEllu1tPIFuUZH/s5f3Qy+JOuWr6w+C/8AwT0+IXwf/Ztvfg7pPxK8B2/iB/hjb+DN P8UaX8OPJFzHFF5Jvr+MXXm3cxjxiMTJGjF2AJbA5L43f8EcvD3xVuP2hfFHhj4rWOgeI/2h9E0K w1vUB4Z+0W2itZ7WvZLWAToX+1yRxysHcsrITubNa1qeY1IKcXaVpJpOy1Ta0u1zJpK/W72WhwZb jOBcHi50ZJSoqrSnCU4c8vclCM1JqEW6U4SnNwd17ii+aVr3fhF/wV1/Z60X4ceBvh/8efi9fHx3 ceHfB9h448SNoHkWGneItd0c39rDMURUjMqxTSDYjxRABZHQhgPmX9l7/gqT+17LZ/sk+KP2lf2j ba20fxpqvxNPxhvb/QtLtrea00NHeDfJFbL5AhCNkwFd/AJc8V9G/Af/AIJHa78BvHvinxdoPxl8 MalB488LeHbPxOdY+Hgubqy1PSbFrMahpkj3bLbLcKS7xSLKyuxKSKAFHnNj/wAG/dvqXw1+FvwZ +If7Vn9q6B8PIfGcN2LTwY0F1qyeIeJSJ2vpDDJA4V0YrIGKncPmNYV4ZvUUZRVmul7fbi9ddfdT +9rqenhcT4Z0KlaHOuWet5Qc2nLD10/Zp0lyqNacOWLbvanK65Wz3Xxt/wAFlv2K/h78Pbr4keMt d8SWFrbeCdI8Y2tlc6GUu9Q8O6leJZ22qQQl8yQefJHG4OJIy67kG4Z9J+Av7c/wQ/aC+NXjH9nb wpJr1h4w8CWGnahreja9pDWsr2d9Ck1tcxHJDoVddw4ZSwDKK+Qvir/wQYP7QPwpTwf4y/artRq+ jfBXw98LfDmt6P4QP2e30zStSh1B7u4tze/vbuZ4VTAlSONWPyMeR9I/BD9gnWfhP+378Sf26NW+ McerN8RPCGl6IfC8Ph/7MmntZxW0fmiczuZN/wBnLbdi4MjdcCuqjVzV1kqkFy6X9LSv1ez5V8z5 nH4PgCGAqPCYibrKMuVNStzKVJQXwJWlF1m7tWcUtuW/0shJUEkEnuDS02LGwAEnBPJNOr1VofBK 7R+cP/Bcj9un9oXwd49+Hv8AwTV/Yi1SbT/ir8ZJolvdftJJorjRNJmnNtHJDKiHyTK6XTPcKxe3 ispHCq0iSx1vhP8A8GxH/BP/AMP+CntvjxrHjb4g+LtRUy6z4pu/EElmGu2AMjwQwnCKX3MBO07Z Jy5rzv46zajpX/B118KLrxRMY7afwDIuiPcNhRG+iazEgX63BmUf7TGv1pi4QDJOO5rw8Ph6OYYq tUxC5uWXKk9kkk9PVu5+qZxm+YcIZJluDyio6Pt6Ma9ScNJznOc0k5WvaCikknbXW71PyN+CX7Pf 7Yn/AARa/wCCifgv4H/Ax/iV8VP2aPifcRW13ZDRptRXwxcSzeS08rQJ5No8MskMzzKsST28kodH eFXX9Hr79sX9mTQ/2jrL9j7VvjDpVt8StQtvtNh4TuUlW5uITDJPuRinlt+6hlfAbOE6DpTvj/8A tmfsyfsveL/Cfgr48fF/T/DereOdQ+w+E9Pu4ZpJNRn8yKMqoiRtgDTRLvbCgyDJr4O/4OHvhb4u +DOv/Bj/AIKu/CTRXm1z4N+MLO08UJayPE95pclys1sk8yn5LcT+bbsMHf8A2pg8ZBqb/svD1HRf NGLTcd+WL3tZ3XdX6HLQ5uO85wsM0pulVq05whWS5VWqxvySnePK7u1OTjq243krH6RfEX4jeC/h H4E1n4pfEnxNbaP4d8P6XPqGt6tduRFaWsKF5JGwCTtVScAZPYZ4r8df+Dt342fCn9pj/gjR8Lvj X8EPGlv4i8Mav8frUaXrFnHJHFceRpXiCCUqJVVjtlgkXOBnbkZBBPvn/BwD+0Yvxb/Yv+FX7MH7 POr2er6r+1J4w0a18Ls8biO90oSWt2k0cwIWEm5n0vls5jlk44JHgf8Awdk/Bfwn+zl/wRA+CPwD 8DNI+keDfizoOj2E86Istwlv4c1uLzpPLCqZJCpkcgDLuxxzXZSxUquMlTj8MUrvzeqW/bXbqvn8 7ichoZfw5h8bXk1XrVJqMNElTp2jKT0vzOo3FapLllo2/d/X39npdvwC8Drxx4P0wcH/AKdY66yW RY9zMM4HOSBx3POOK5X9n7/kg3gj/sUNN/8ASWOuH/4KFfDK1+M/7EXxV+FOpftD2/wn0/X/AAVe 2er/ABGu0jaHQLJ4yLm4kEssKCPyfMVmMse1WJDKQCO4+ZtqeE/HD/g4t/4Iz/s9/EG9+GHxB/bX 0ibWNOkaK+Tw1oGp6zBDIpKtGbiwtpYd4IIKhyVIIODxX0x+zr+0/wDs8/tgfDKH4v8A7Mvxd0Lx r4Yubp7UatoN6s0cdwgUvBKoIeKUK6sY3AYBlbGCM/j3+yD+2Z/wb2fsafs52X7HX7O37NmvftXe ItKsVsvGuu+Bv2dv7Vu/E19IzCaaU6gFBgdwwjiEkkaxqFjaQDcdf/g0nvof+Giv23PD2gfDjUvA mgW/j7RJtK+G+pXcryeFEe98RRjTpEl+7NBHBBaucAkWyZJwKSHy6XPPf+DYb/goz+xP/wAE8/8A gk3418b/ALYX7QOi+CYNW+PGopo2mSpNdX+oCPR9DR5ILO2SS4mVWkQO6oUQt8xUGv1k/Yp/4Kuf 8E9/+Ch11daP+yD+07ofibVrGBp7vw9JDcafqkVujIjzCyvI4pnhBdFMqoY1MignJGfyM/4M/wD/ AIJq/ss/Gv4N+Ov25vjZ8LNC8Z+INK8ZHwl4VtfEOlpc2+kLBZWl7c3SRSZjM8hvooxKVMka252F fMkDdx/wcufsr/Br/gm14y+Bn/BXz9jHwNpXw88f+G/ipaaZrll4ViGmWuuobW5vF86G2ATcyWlx aysq/vobxkm3oq4dxtXnY/coAAAAAADgAUVW0bUYNX0i11a1RliurdJolYYIVlDAH04IqzQQfnp/ wXI/4JrfGn9p+fwL+2T+xh9ni+NPwkvorjSoCYUm1a0hnW7gSMzZjaa2uVaWNJMI6zzqSWKKfMvB f/BzLoPw60S08C/tnfsKfFrwl8SYbdI7nRNH0ALb3lyPl3xxX0kNzbo75wjLLtBwHk+8f1Yprbfv Hkr74rzK2X1fbyq4epyOW6spJ262ezPtsBxZgZZTSy7OMGsTTo39m1UlSnBSd3HmSlzQvrZq66NI /JL9nH4E/tk/8Fdv+CifhH/goJ+198BL34W/CX4XCGf4e+CtficXeo3MUhlhISVI5CPtAjuZLhol RlhhgjDgvKn6TftS/s++C/2sf2dPGP7O/jy3hOl+M/D0+ntcS2qyNZzuuYLpUc4MkMojnTuHhU9a 9JGcc4z7V8nf8FNfiB/wVc8FQ+H9L/4Jn/Ajwj4vTWLLUIvFGp+IL21hutEmAgW1mthdX9tFIfnn bDxzKGiXcu07WFh6eBw05S5puTvLS7k3pol0t0WyFUzjHcT55hYYeVPCxopKipT5KdJQbmm5zbbk 5auTu5Sa8j86/wDghB8Lfjn+0d+3BpV5+0rLI1t+xx4EuPBumae195oh1ie/1GGNZE+aNzFAbqLf GRhbCz5OM17Z/wAHd3wW+L/x4/4Jv+BPBXwQ+Evivxnqtv8AGywvLjTPCXh651O4it10XWY/PeO3 RmWMPLGpcjALgckgH6u/4JA/8E/5/wDgnP8AscaZ8G/FGrWmp+MNa1KbXfHN/YyO9u+ozrEnlxM/ LJHDDDFuwvmNG0m1d+0fVUZBQEHIJNPKsJPCYRRn8T1d/lZP0SS+Q+P8/wAPn/FFWthbexp+5Cys mk3KUktbKU5Skld2TSu7XPyW8Bf8HE/xw8E+A9D8G/8ADiz9quU6To1rZmRfBV0qsY4UTIH2bpxx 7Yrm/wBtP9q/9qz/AILm/wDBOn47/sj/AAo/4JufGb4WeKdM0DRdf0q0+Imhy2UPimO11i3nuNOh llhjUTeXCJY0DFpWTaAACa/Y6ivSPir2Z+K3/BPr/guLdfsy/sb/AA//AGG/ht/wRb/aIm+MHgnw tZ6Jc+DdE8Diw0nUNRhRIZb24u3H2i18+QNPLJLauY2lbcz4Mhx/+DeLxP8AtSfs0/8ABVr9p74B /tzfsy+MNF+JPxt1+DxVqOteHfDZfw1YXEE2sahclrvzGAt5jqkS27q0oZsRswOM/uDRSsPm3P5x f+CDn7Sn/BQP/gjZ8CfE+vftB/8ABNX40eIvgj4s8YSLqi6F4UmGueG9ct7OLzroadcrEz2lxC0E RmcxxiS1ZRIWQo3sX7UfjP8Aal/4Odf2i/hL8CPhj+xh8Rfhp+zL4F8Wpr/xB8b/ABM0v+zZtUxG yNHGiuVL+V9oto47eWdg14JJfKRdw/diimtBuV5XI7OKGC1jgt7dYo0QLHEoACKOAuBwMdMdqkoo oICiiigAooooAKKKKACiiigAooooAKKKKACiiigD/9k= ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/gif Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/images/inv_area_space.gif R0lGODlhDwAdAPcAAAAAAAAAVQAAqgAA/wAkAAAkVQAkqgAk/wBJAABJVQBJqgBJ/wBtAABtVQBt qgBt/wCSAACSVQCSqgCS/wC2AAC2VQC2qgC2/wDbAADbVQDbqgDb/wD/AAD/VQD/qgD//yQAACQA VSQAqiQA/yQkACQkVSQkqiQk/yRJACRJVSRJqiRJ/yRtACRtVSRtqiRt/ySSACSSVSSSqiSS/yS2 ACS2VSS2qiS2/yTbACTbVSTbqiTb/yT/ACT/VST/qiT//0kAAEkAVUkAqkkA/0kkAEkkVUkkqkkk /0lJAElJVUlJqklJ/0ltAEltVUltqklt/0mSAEmSVUmSqkmS/0m2AEm2VUm2qkm2/0nbAEnbVUnb qknb/0n/AEn/VUn/qkn//20AAG0AVW0Aqm0A/20kAG0kVW0kqm0k/21JAG1JVW1Jqm1J/21tAG1t VW1tqm1t/22SAG2SVW2Sqm2S/222AG22VW22qm22/23bAG3bVW3bqm3b/23/AG3/VW3/qm3//5IA AJIAVZIAqpIA/5IkAJIkVZIkqpIk/5JJAJJJVZJJqpJJ/5JtAJJtVZJtqpJt/5KSAJKSVZKSqpKS /5K2AJK2VZK2qpK2/5LbAJLbVZLbqpLb/5L/AJL/VZL/qpL//7YAALYAVbYAqrYA/7YkALYkVbYk qrYk/7ZJALZJVbZJqrZJ/7ZtALZtVbZtqrZt/7aSALaSVbaSqraS/7a2ALa2Vba2qra2/7bbALbb Vbbbqrbb/7b/ALb/Vbb/qrb//9sAANsAVdsAqtsA/9skANskVdskqtsk/9tJANtJVdtJqttJ/9tt ANttVdttqttt/9uSANuSVduSqtuS/9u2ANu2Vdu2qtu2/9vbANvbVdvbqtvb/9v/ANv/Vdv/qtv/ //8AAP8AVf8Aqv8A//8kAP8kVf8kqv8k//9JAP9JVf9Jqv9J//9tAP9tVf9tqv9t//+SAP+SVf+S qv+S//+2AP+2Vf+2qv+2///bAP/bVf/bqv/b////AP//Vf//qv///yH5BAEAAP8ALAAAAAAPAB0A QAgjAP8JHEiwoMGDCBMqXMiwocOHECNKnEixosWLGDNq3MixY0AAOw== ------=_NextPart_000_0000_01C73E86.DB6C34F0 Content-Type: image/png Content-Transfer-Encoding: base64 Content-Location: http://www.cert.org/tech_tips/securing_browser/images_syb/tools_internet_options.png iVBORw0KGgoAAAANSUhEUgAAAYMAAADWCAIAAAC8Mnm1AAAACXBIWXMAAAsTAAALEwEAmpwYAAAg AElEQVR42u2deXwV5b3/v7Occ3L2JASykISwC4IBgopFLaVo63JbWxWrt9cf9d7iwnWlShdube9F K1oB9doqtJbr9itarFcqtS3ixqYSkEVQCCFs2bezbzPPc/+YcyaTmTlzTpKT5CT5vl95wZw5zzzP M8888znf73eeeR6Gu7WJtdtBAWe1cXYm3wIAYGGAmsFKwWmJf2syAQBwbPyjSLo+StsIgiA9hSf+ kPyBtdtFTjTbGQCICtL3ABEAC4SiYM2RtEfxr4zqYwgbFkGQnigR7WghMBoAKB8hFgYECDW1U5YN AjA8y0gmEADlcpSHWa1MKETjNhRhRJZKGwDAAY0RBlsWQZAeKBH4ghRawMqAw0lDQQCgAAxnAs5E RYCoQFmW4VmIxWRVAoCwHySxobGYZA9xIgcAVGQEAIYK2LIIgvREidrOApSC1Q4RApHQivM2ut3u ZKl/dvpO1R6GEABgBCAgENQfBBkGDMadzMf/D1GAAJjsAPCTn/xEN+n69etv2L90c95zcX+NiiAC JVQyo4AAEKAEo9YIgvRaiVQIHt3dr726YfEtP/yT81kAAEKBABUTwWqaiA2JIhCKLYsgSPqwAACE A4FhohxY2G6e17IaZlmN/HHbtm1z5329trZ2zoGrJBkCrQGEMoQgSG9sopAJ8gAAKJ8DAKtXW1d3 VMtf02cnzV3m3v6E12WjK1asqK6urq2tra2t3ZcQMYZwXR6ZZB+xjCRGp35TVOjmcv75XP/VPlkR vSu6jxU+9ZuiDdsCq97wSR9Xftf5w0X2cXc1Sh+bNhQDQOEPGwbs0p76TVF5Ad/sEY0Lpa+VAgCz +GzW9lGphl0/kD2v6gB0RaTPSsTmAp8LbA6wDLz20tLni6uqYP3tAABVe6uY26s9T0x22ag3yJSX l0vH1NbWsgQAIC5BlO3moNG4MJUX8ABg/Xx76Pwrel2/3atGTSvlc5c06X6brIjeFd3HCpcX8NfO oI/9MSqYrQBwzRxreQGfc/ZIuHRm/BYSBWvdZ6GKqgG4rp89XlBewD/1/+t++sDL1rJZ21++0qAZ AcD20cbgZf/au6uQEVIWYS9eFa8qgEFV++PKIgOiRLKXtvWl55+vX7q0mLkd6J5JADB3bjU8X+V+ sNrzxORIJAIAY8faAKq2bdsWP4gFQoBhWACgCQEChpXFCACY9tN9qd+8KWYAsB7fGZo8P1maZEX0 rui+VHjaOCvnaxFGlQPAtFIeANiTn0DpTAAo/GGzta56wK5rZYUJAH76wMuxC2+K5TjSacY+XoU+ kk4RPRWgDF5ZpP+VyGyVtlasCC2tqpp7+1KA6nh4qApgfTUASDIkiq1dx3EMETkQpSi12LEh321j AeB0q7jh3dCqNwJywoZjD7qclj3Ho5es7Ej8XOdXjjMBwIFTsVkPtcfNqU2FAMDc1KTcljYAILj/ BumrpvWjAaBwaYvyHLRFKHof2/mH0dq60U2Fx+qFcaM5i4nR1hkYVqrkH3eGb37ak047/vpfHADg clp+cr3jFx+wK79rlwr91cOL7n2PTZzItdJZvPsfeVUTeLeN9QTJa7vDS9f75LM+cCpWMZrL/UGL bkOtX+r89tycMW7WEyS/3hKU6qxNJrdboGGlbjMmuVNZ3WbRHm5wBZX1T9bIBhVOWUPp/y/XjppS wm94N7h0vW/9UucPv247Vi9Mvb9NyscTJG4be7pVHLesVZtDmpVPMxmSKVgAAA5WXLThxgkdc9dX yeEh+uwkzxOT6bOTmleVWywWUWzluIIu1x3MADxwHHAcMFzeUo9t7p//c/X75QXc3VeaeTEMXPxR WvGUJ7Z+2DBvsvm9n1iBY3avyq8cZ3r9vdY/vLK/cpxpz8M24Bg5se3DDcpt5pZm2TKXv2LEmPXU XuVRqiLk/ZJi5v5bq61qs7ZuU0r4x16se2rjkfICbukCnhfDCtcmXsl/veHX5lB7PE/jP4YBAK8v ctXFbl4MXzPH4g3GDUNTLCCfiO3DDe/+PG/hDPMXp0K2qs3NDR2TXX5zxCPX+dj+Y5vfa7HW7NBt qFsvt45xs/esPhQNhi4p9vFiWDeZqt10mlH5p2gr3WZRHS41ztbd7VKJBx51KPOR658sN93D06lh oGEl3VQo7Zn6o3ZvQLj1UvOyr8Gtl1u9QXF21WM5TV9IKUsmPrr1w4byAu7AIzbVORp3P7nyPTjH YflH+IH/k35k+MbGxmqA6upqAKiCqg92fvbBzs8WLjw+d5l7zMo/RyIRjitQ2kQszwDHMRwFAOC4 /Y+6OnZf9/MVCwBgTJ7ZdO4ow3YNyL52fQ4AzJlosXQ2za7gAWDJLc/d8ZoDAGZNtOa0nVMmTrYd +voyhjUVLfOMu+Y9YDiGNSUrQpXDZ4/ld+z5rm7dHl/5yoNb3QBQVpjDN9VKO+sO3V85zvT+fu+S W54TLrop5iqSyjL+m11hAoAvjrWcN7WQ97VPG8sfPRUCgAtmFAHLK6tUNd4EAAsXrqUFE6Y+zF71 0DEmGpETLLnzz3eu94rj5ug2VDgGADDJHSj5d/8NKw5wkWDK9pTaTfVR+adtbVWzqA4/r4QHgBu/ +5s7/5gDAFNLLTnNddr6J8vN+HCDGtqLV9mLV9neWy/t/N0HgsXC//cdhRYT84fXv6Rjz4+UXqDq D1PLrKrMjZtLrnz65zgs/4AZhD8WBBtwlvHj/2f9+qVVUA3V1QCw/NWvLn/1q1BVVQ3rm1d9R3LN lDYRMDzDsMCYGd5Ut8ZRWc69tbPDNvPV+Jd1eyntGqkkbbucFra51mKK/7BEHUUAYLHwTP0RbWLd bekvNGF+aMJ8aVu3COX+unXuynL+rR0dtpmv6NYtZnLFtbVmp7ThcloAYOIYKs7+btRRJJcr/ZGX 86Q/1X4ABgDe2VbjcphefGC028a88348KsEG/coS3bZ4C4QLJlHKh0sqI3kVygRRR1HUWqDbUL9+ O+r1x+65Y97na0Ytf+BrEVdpOu2p24yKmuu0trJZVGmkEgMNK8NbpsVLbDqurX+y3FIeblDD4MJ7 gwvvlXYufyV2sC4GAIc+b/rpj98Qxl2sPRdt5imbS9n46ZzjsPwDEzPwfzywJiDwi11nq6Bx33mP cZvGwAEQbntWanGlDCltIsbEST47EUn5KBYAltz8G3He97sScKx2mzl3KBL7lnSZpZ2RiMC0ntRN bLCtE0BQFMFMX6R4aMICwJJbUtdNZvW6HTffNGdyhfuNlcK1z6m/ZW8NWP+xVnqCE7rifnn/pCJW Ova+uy+/8Rul3iB5/D83P3znyonj84ANKUuJxKiyBZKdiyqZ1FCPbBFWbw6+uUy8+rKild9mV2/2 RmKO9NvTuBnTvApSxeQnWQDApGpS7en36HDdr372LdMFFSYAmHl+4UO/uu2X292Mtg01raHbqtrS +1JJpG/Pzjhz9fiKqi9qFy1f/thjj3m9XunJfSQS0cpQ/FLwQAmwAAfO0spSZsV9l875Zvwx/4r7 Lv3lsa5L9dbyHAA4fqINAPafpvMmMht/+x3r+BwAOHC4kY6ZwJhYT4i6rcyK+y4tucSi0Du2q+uY WABoWJsDAMX3h1WnoSxCedSBM6SyjF1x36VzvlmmWzcpW5USrTo00/cC+XqVe9n8jt984lAlCF+9 XO6dWo40wLyJ8MXRelpeGRevQCtTWCEn2FlDFk7j3n79+1//A3v0EUt7AOY/GunWtCY2WUPVrbXW d1rnPxoRLwOghD/6j/2nv6fbnqrcVM2of5+b2GTbysPl+vudZVdMZ/efpvMfjTBJ8tHuSXZ4T2v4 o2tMkRh9/vcf3/6DufdfP+qRbX7RYlP1h2M1bVJryJkn636qInpxjsMJEuMGKWKdaNV9508GgJaW lkgk0tIRDQbP6csQAMNwDMNRlgPePOdROHgy9PMVC0bbycG6KACUlbo5MSpJQ6Bh5bWV3PH62KxL f0sqvzn/cXLwZPjG686/tpL7+Fjka9dupBVzgDe9c5hGouLPVyy4fIriivOmNz+jkp0MvAl4kxSx ttTslj9qiwDe9NIeGomKr7+4eM4qkqgbVdVNLkLbKKLd/dLHYLHw93zTwlESL8vwTzIMAWDrYSq5 abRoMgCUjXUDxylLuWIdff9QcE5lsfh7a6Gb+duOBnPrqW7V4E3Am3QbanctzJvIir+3Nnvp6nU7 gGGTtacqN3UzKv90m6L7tvJwqf6XXFh6bSUXidG/vXNYt/7Jckt2eMoaBhpWir+3ir+3Am/a98sc t5V56/2GHz9X97/7RJfTUv1wV8qGYw9eW8kdrIvOW7SBls1Q9oc0m6sH5zgc/xgTMwh/UH4Qyp2Q 7wCHhbGwD435rxtvvNFYvVavXv1m2WsAwMQoAIgUAMB05nP24zfJvMUgRtlP3xQW3SE4R+X8+REy +2p2/1YAILOvjlbMlnIwn/2c/fRNACDzFkeLJ8efMXma2CMfMI3H5UPC3/mZtJ/b/jv5o+XI+wAQ mb5AOipZEbyvjTv8Lpk6P5Y/VipOWzc5T3lbuZP3tfHbnlPmaYx8LBcJmLaui119n2ix65YCAKaW OvbcUebkPjp+jjDtctFiVyVI1lBya9Cp84WJF0oH6ranKjdVM+rW3GBbdbippY6t+YRpPG5cf6PT 1xyesoZdZul3fiadsrjw32LuQulAcuF1obdmSLFtOn4Oc3IfufC6aOn5yfqDcXOlf45IRmCgtBoq 8sFpZ/J5MJsfGvNftbW1KQ/bUrZJBAbkYdYSAr5xhgwmwjOMpESRG1AphmicCIBGOYaFx5v/g3Gy jJllWI5hgWE4hpfGyiTx7hKeHSEAPINihCBIb5Uo/vpYDIADAcAERCQsACXA8kBjcT0CiEsSpXFz ipD4Cx8IkhW9+W5q+dMj2A59hIqD5Z2V54PbDnYWzGaGEYDjAAA4jmFYlqeU5VgplM7oRNSlN8wo y3WdgCjitUQQpJfeGRMJAIQpByAAw1lA5MDMimGG4WLUZAIqAMNTlmMZgVDN/GpEBAAgHEXvDEGQ 3iuRLwB5LG1qBDMXd8H4HMoBxCfYN1MqMgxHKE8AwEQVNhHDsJQmFvNgxPhObFkEGaIw7CDYE92t G3OX/8UIYUYAiMeGwpK0SOFpGgLa5d11/QvddyIIMhShg+HYMD555UV9/TCoFJNIQXWSM+pcqUEW euUxOltds2XTrvypqvkYw9pqK0IZZSI5N0aTG9Uez8iNIFeSqktkup0dVe/UOU6nqRiqbm3FA01G m798VgxDtd3rqysODlYv/3D1zJQdK8llo6B3AdTJKKTVn2nyjpHih1SdA9W/Eprzk5Pp3+gU0rhj aE9arHsl00uv18mTtrCy/Q3aVa8+jKYgfH0GQZDBB5UIQRBUIgRBEFQiBEGGsBI57bYBqJzTYcMr lP3se/YrA1aWy+nGBh+W8D1SHF8g6LTbfIFgxrRGk79eGrsvEJD+7a2i2X3+oGI7IP3bjzeMo9us Rhkpy+l0+Hx+l9Pp9fkGRlPmLNs1gBLj8vq8yT4iI12JtOqQQRlKM8NeC5BRnv0pQxLeRBGZGl3l 8/n7u86S9Ox79isDqUEIkpYSaa0YpXY47fFFiryZUyhXd0NJtoacdjsAyNZN3/y+uE3kdNgT9ZeK cPgCfgBwOezeRIJMyVZXWX4/ADgdDp/fL9s7Xp8fAFxORyKNDwBcDqfX73M5nD6fX7KJAMDldAKA z+8DAKfDmdBWf8Ici+/xZki5ZENJliftHuP9fbMEXYnT6VruyeXq8tGU+5GhrESMwSAmtQPVNQwS ACh1OmxdXo/d5vMHId0BVDr5S1rmsifyZMBpt0H87X8GALz+IKMzoFE9EqzbSEXKSOLldNi8gYDL bvf6A7S7HtG4/MWlBzRjGqUdjGasoLJQ7cguV0J3ZJno0h2HQxIjqhygyIDL4fD6/UwijZTe5XB6 /X6qqImkQTShU4o845qVqBAFvQFzPTLSlPaRtK3do902gCbf50qITncfzSNHiOLbTDcBkvbrDWg0 GgmpU6MUIw/71o7K/qlfHUb1LZOoj7I6TPKG1B8uyaS+DbvVh6qHimqHIDIpLqs8dlen/gbDNtPx zkJJTzQTQWVJd+ggvSHiVOiFymLqozUk644iW0d3983vcjh8fr8kOjSpl+c3DEg5dcNJg9KYfXTr ulk9icg0hqjRO+uBjgxdfAoTqZ8lz6G0iTIXjfJpY0lOp0M2nQYMOcaUWe8Mna8RApu5Oy2rn7jH XbPkwW/JmVKaQtK2N9CPsW1vwiDKQHBNYRwNlk0E/fm4DY0jtImMDCJZgHptHCklzBsIKvPsftMG XQ4bZPThnaQ1ifz792ma5IWlFCb58X8yefL5fVKU2uv3SYEhpXHkdMqH+zKlLKo4tHaP7JplXIy8 Pq9LL2KtFCY0moYHjN6NrRez0b4Zn+bL9cZo3hVmNJGxbhE7TTxSG7EGTcQa9N6V142d6cTzdCpG jU4kvZYwePOa0UumqCE1an5NdfXmNoDLHxq0d/E/SLyLb3iWYPxKelf02qBBjSPWOi2bZsRa3WUp o9d/dN7F1+vPBh0jRXqaskeB4Sv1umkY7f0IyTuS/knJc0UYRawZiu/iIwgyjONECDJgoEeGSoQg CJJ5eNAMQGJ03Uom+Rx0hnM2grFfqnFHFa6nphxlJpoBSCnmMExdrxRhgSSD8oznpEweBdBELBj9 BtIEPbTN0W1KS5rsutHsmNNXp72UZ6QNr+gE6iC9/sYYXvLkMzTq1ofR1ke3XupeS6k89jXVkMAk 3SDFnJ/JexQYDuTUbR6afFyi/ohOnair5sZU1Edx22r6f3zgYkolMpxPsvdKpN2dzrBQ/ck59YKW mrPS9meark7pdg3NCG/DrKhhv9FTljQaVi/kyBi269//8ir+CA8Jrrx6MaSnRKkmak7rDu3STa2S GiqRTvZ6081SzZTK8hnxeLFHJtfftBQbIcvZvGn9yDlZjBMhCDL48OdO4PwPCJKl1NftGylKNHXm QrzeI43DR2qwEYYEI+f25P3BsLSFEWsYMRFrZKjQ0HCW43ie5ziOYxjG8Hng0I5YY5wI6V8YhhnE w4c6jY2N7e3t4XBYFMVhbhPhrYL0QhpUP55U710thmFophc21pZOB2Xt5EycSDo1P3GiNj8/H6BE souGsS7zlMZUu0i3D0kXNdZvEkadi561prTlqMZsUxdAiTL75ItKG19WqjqhdFf/1qlYeiPsiPZA Q7uZGm4yoG1YxvjQpP7dQDFENSKrxKihoZ5SMTfX6XLZzGaOoazqYio6HjUIYjDp+XA0DbcLDBfT lsfWUqIzxymlTLIui94Z0huJkX6cVfcSk8DYsdImU+3RptEt3ThPg41kOWeh6xoMBiORiCAIlNLh rezonSGZN4KMf+21yVR7lIenIxmq9AZFZ6E3Z1wlQsiw1yBUIqSvZpHqDknT0Oi7PaItXTdPra5l oRihD4tKlO38YWcs5Elr9cG2o0duXHzheaU5WfLbbqA1PbV3Mns/S8kMouxDRYaEsPfd317H0tbp 31hdcv5VI1GJzkTPvNL0yo6OHYc6D3oEDyPABfYLyi3lVxdec23xtS6Ta9gIgSCIra0tLS1twWDQ 6/UCpSzHul3uUQWjiooKrVZrv3dTIv548UTJOCeEyIY6SXwQBCISAgCPH4Vt+zopcU0rt2X/XZRB oyyZ0ilNIa1ZlOzYIWQNHfrHExd+a8WonD+/u2X9iFOiM5Ezvzr9q7da37rcdenFjplX5s4r4HJa wudO+2trfZ///OC7P6n+8V1T7lpx/o+HQbvU1dWdPn3GYrbk5ec7nc6ioiJKiNfrDYfDp+pOHT1y tKSkZMrUyTZbP975VBSle4ZhGJZVP1uIikApRBOP0gSr8x+ftlFCplc4skoaepGsp0qhTG98e6eZ LPt1vOPc4UuuW2luWiv6Px8eP/zpPjt7u/3t+fvnExBfm/HKXSX/cqFzShFnDkTqSazVxYSn252L SyZ/bUzBhs/XXb7lMm9sCK9oLgjip5/ubW5qmTJ5ytSpU3Nzc3meF0UxHA6zLMvzvMvlKiwsbG9v f++99+vrG/pViZKNZ5NlSCQgEgCA4/axDbz773ua933ZOcC3kLyHKpD366bXJjPOSrd05bfaxMbZ DvX7VowGzMxJEPwlhaTl5K6RokSvtrx6+xe3/2riqh+MuTEUaWwOHW8KnmgMHGsNnWwN1UXF+Jz8 JVb74kmTo7Ez/7TlGm/UO0RlaN++fdYc63nnnWcymUKhUCgUCgaDwWAwFApFo1H5pzU3N9ftcn/y 8SenTp3qV5tIV4YIgYgIIoGoCFERAKBozxbbiQO++nNbN+/AENvwpuXkrpIpCyDwIQj+4qJYS83O 4eCd6fT17i9iHQ4cuuvIHc9Pe6qYc7WEar2xFk+kKRBt5Rj2uop72iL1fz31nPLohRVl22vO3LL1 5i3f/ouUQyLq0ZWn7k+tunC9MZSUGiyKYXhXy4dRgy9hX/U+s8VcMrYkGArGYrFoNBqNRiORSElJ icViOXnypNJIsdqsYwoL9+/7rKBgtM1m1dRGZxGOdN4IkocsElEghKgaKUaAEIgSIDRuGQHAJQsu bGugoRCNRmlT7XblqE252RVjdfBhzRCiy3KUgoQA0Fyzo3jK5eB/BmLekhL47KNd0xdRati5jMYl Kh8sgnbBEsNVa/RG9Kq6WTeBoaT3NtGdR+76YfE/57N8S+hkU+hEc+BES+C4lbM9OOvliwu/dXX5 HZPcc1WHLJxU9mVz9dYTbw+ta37yZF1MiI0dO1aygIIJ7HZ7WVnZmDFjZsyYwXGc8hCLxeJwOj/+ +JMB8M4ojVtDShmKihARYNrEokmFxeV5JWOsYwk+FR7uNJ3YVTJhMkTqQPCbrTbRv3f4e2evNr7a GDp7met8yR1rCdS0hk6Myhl77wW/s/LxNf86IvWqo2JUrJo4etmWuzLio7mduQPjl52qOzV69OiQ AskdEwRBSmO327Vi5Ha7W1pazp45m3klErpsIkl0mGOfKWWI1NdJ0SLeCmPOh4mXwJhSoMl/dpAh h7+tztv8ZfvZ/UK4aylNjjOZ4RjEOgEATK6SMrcyVNRycrf0V1e9Kdh5dqicaYpnZ8/V/vaavEua gif80RZvtDkqBsfapypl6OVjP28LdykRARqhokCJ22UBNvT20b/cPOuWbvetq2tNYU82rRXT3NzM m3ie5wOBgCAIckgIAILBYE1NzaRJk2QxOnz4sCiKcvgzPz//xIkTpWWlma0SEYWEZQ5REbi3N/Kr boOrl3Q+9AKlAMc+K1y+MPCV6xofeCEqxuXJagUiohINH8Ke+iBb57cc++SL13PMQZa2hELu0mmL ILAHYh5gTWDOLZ7o3Lnpnhw7WKxjAJyjCh1mexGYSgFg1//cvOjej+TccnMLlZl3djb1vYa5eUWd HY25uUWdnY39pURe0Xuo8+A1eeNaQyf90VYA0MrQx01vyQ5jjIpRKgqURIkoABlbaP/r0a0qJVIK kNvpzh4xam5qslgswWAwGo1qY2fNzc0AoBSjQ4cOxWIxSoFSarPZamqO94dNJIqiJEPQUMevug0A zFs3Ogl4v3PP6OULWX+n8+8b/eMuaP32fZKVlGMFVWgJGdKUlrSVnbdo2ozzy8aV2W3FHMOCGAJ+ PNQs