Infosec thoughts:
Microsoft has https://learn.microsoft.com/en-us/previous-versions/bb430720(v=msdn.10)?redirectedfrom=MSDN
**However** , when it comes to Mark of the Web (MotW), I can find no such advice. (e.g. if I'm a file consumer, I should do `foo` when opening a file tagged with MotW, or if […]
Microsoft has https://learn.microsoft.com/en-us/previous-versions/bb430720(v=msdn.10)?redirectedfrom=MSDN
**However** , when it comes to Mark of the Web (MotW), I can find no such advice. (e.g. if I'm a file consumer, I should do `foo` when opening a file tagged with MotW, or if […]
Comments
Eh, that's pretty dated.
At least starting with 7.01 (the fix for CVE-2024-30370), WinRAR applies the MotW to more files beyond just Office. (But still not all for some unfortunate reson).
https://infosec.exchange/@wdormann/113642074449342650
Yeah. Anyway, my point of this thread is:
Windows does
WinRAR does
7-Zip does
My hope is that there's explicit documentation about why one should choose the secure route.