You trust Microsoft Office with your most important documents, spreadsheets, e-mail, and presentations. Unfortunately, many of the default security settings in Office applications may not provide a sufficient level of protection for your data, your system, and your reputation. Follow these steps to fine-tune the security settings in Office 2003; tomorrow I'll cover the new security options in Office 2007's Trust Center and elsewhere.
Office 2003 lets you encrypt files so that you need a password to read or edit them. In Word 2003, open the document and click Tools > Protect Document. To restrict the styles that can be applied to the file, check Limit formatting to a selection of styles, and click Settings. Uncheck the styles you don't want to allow, or choose one of the other style-restriction options, and click OK. To make the document read-only, check Allow only this type of editing in the document, and select one of the options in the drop-down menu: Tracked changes, Comments, Filling in forms, or No changes (Read only).
Choose an option in Word 2003's Protect Document dialog box to restrict access to the document.
You can also designate the people who can access the file by clicking More users, entering their user names or e-mail addresses, and clicking OK. When you're done, click Yes, Start Enforcing Protection. In the resulting dialog box, choose either Password and enter the password twice that will decrypt the file, or select User authentication, which allows the people you designate to remove the file's protection.
The User authentication option requires Microsoft's Information Rights management, which requires the Windows Rights Management client. This in turn requires a .NET Passport account, and your agreement to the "free trial," though there's no indication if or when the trial will end. Microsoft promises to maintain the privacy of your files, and to make them available for three months after the trial ends, if you maintain the .NET Passport account. There may be a good reason to go this route, but to keep things simple, I stick with the password option. To remove these settings, click Tools > Unprotect document, and enter the password (if you chose this method of protection).
Choose Password and enter the password that will open the file, or select User authentication to allow the people you designate to read, edit, and/or comment on the document.
To protect a worksheet or file in Excel 2003, click Tools > Protection, and choose your preferred protection method: Protect Sheet, Allow Users to Edit Ranges, Protect Workbook, or Protect and Share Workbook. If you choose the first option, you're prompted to enter a password to unlock the sheet, and you can limit the actions people can take when working on the sheet. The second selection opens a dialog box in which you can specify the ranges that will be unlocked by a password by clicking New and entering the ranges. You can allow specific people to edit, or list the users who can't edit the range without a password by clicking Permissions and entering their user or group names. The third and fourth options are similar to the first, but apply to the entire workbook rather than a specific worksheet.
In PowerPoint 2003, click Tools > Options > Security, enter a password that will let the presentation be opened or modified, and click the Advanced button to select an encryption type. This dialog box also lets you remove hidden data from the file, and adjust your macro security settings (the default allows only signed macros from trusted sources, though this is of questionable value since "trusted sources" is pretty meaningless).
Outlook 2003's security options let you encrypt outgoing attachments, restrict the sites that can send you scripts and active content (the same list that's in your Internet Options), and limit the receipt of images and file downloads. But two of the most important things you can do to protect yourself from malware in Outlook are to turn off the Reading Pane (aka Preview Pane), and to view your mail as plain text. To deactivate the Reading Pane, click View > Reading Pane > Off. And to switch from HTML mail to the safer plain text, click Tools > Options > E-mail Options, check Read all standard mail in plain text, and click OK. When you want to view a message in its original HTML format, click the beige message bar across the top of the message window and select Display as HTML.
Protect yourself from malicious messages in Outlook 2003 by selecting "Read all standard mail in plain text" in the program's E-mail Options.
Protect your reputation with the Remove Hidden Data tool: Maybe you're one of the many Office users who have suffered the embarrassment of sending someone (or a lot of someones) a file that hadn't had its revisions and comments deleted. To minimize the chances of the public seeing more of your files than you intend, download Microsoft's free Remove Hidden Data tool. (I described this program and four other great Office freebies in an earlier post.)
Tomorrow: get more out of the new security options in Office 2007.
The New York Times recently reported a heartwarming story about a lost digital camera being returned after a kindhearted stranger analyzed the photos on the camera to find the owner.
The camera was left in the backseat of a New York taxi, and contained sightseeing photos of Manhattan, as well as Florida snapshots including people wearing name tags. Leads took the hunt to Ireland, back to New York, and finally to Syndey, Australia, where the rightful owner lives. He was "over the moon" with gratitude to get his camera back.
This story has a happy ending, and perhaps most of us would be glad to get our camera back in that situation, but it also made me uneasy to realize how much personally identifiable information was stored on one camera card. I would rather have a locked camera than could not be accessed if it was found, than have a stranger be able to peer into my photos.
The situation is even more crucial when it involves smartphones. ... Read more
One of the beauties of the iPhone is its supposed near-ubiquitous access to a huge amount of your personal information from one access point. Think about it: your contacts, text messages, e-mails, music, photos, stock portfolios and bookmarks, even to what you're doing and when, are all in your hand or pocket.
Over iced tea on a sunny day in San Francisco, a friend who is quite the entrepreneur noted that if you ever, god forbid, dropped your iPhone or lost it, or if it should get stolen, the next person who picked it up would have access to all that stuff about you.
Of course, because you have to activate the iPhone with AT&T, it should figure that if you reported it stolen, the particular handset associated with your account shouldn't be able to access the AT&T network. (Note: I've heard of some people breaking in and hacking the iPhone so that it could be used on different networks than AT&T).
That said, your information is still physically located on the iPhone. This leads me to wonder if AT&T can send some kind of disrupter, fry-my-iPhone signal out that would fry your iPhone--the ultimate nuclear option. Sounds drastic, but you never know how valuable information can be. Remember when Paris Hilton's BlackBerry was allegedly stolen? That is, after someone hacked into her T-Mobile Sidekick? BlackBerrys apparently are capable of receiving a "kill signal" that will disable access to your BlackBerry e-mail if it is located on an enterprise server, but what if it's not?
A world of worry lurks here for the contents of your iPhone, right?
But, like others, I've recently come to see that you could simply use the password function on the iPhone. No, not the old TV show Password but rather a key lock function that many cell phones have. Not many phones, however, enable users to provide a unique personal identification number to unlock the device. The iPhone's password function (located under "general" menu) requires that you type in a PIN every time you use the iPhone after it goes idle.
Well then, who uses the password function?
One person I know who works at a big tech company and has e-mails that, I presume, require discretion and protection, uses the password function. Another person, also of a large tech company, says that if he had work e-mail on his iPhone, his company would force him to lock it. But for now, he says, "who cares if someone reads my e-mail?" It must be elementary for tech companies to institute stringent privacy protection policies.
Others I have met have said that when they leave their iPhones at their desks or workstations, they lock theirs too.
As for me? Well, I'm just paranoid. I already shred most of my documents anyway. Call it the lawyer in me, but despite the extra keystrokes, I think it's still a good idea, even if we're not as famous as Paris.
- prev
- 1
- next
