• Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint

Web Security Checklist

Table 7-1 shows the settings recommended for the zones in Internet Explorer 5.0. These settings will vary slightly with different versions of IE and probably won’t exist if you’re using a different browser. Netscape does have similar security features and settings, so AOL users and Netscape users should be able to translate between these settings and the ones in their browsers. The left column gives the setting name, and the other columns show the recommended settings for the individual zones.

Table 7-1. Web Security Checklist
Setting Internet High Security Local Intranet Trusted Sites Restricted Sites
Download signed ActiveX controls Prompt Prompt Prompt Enable Disable
Download unsigned ActiveX controls Disable Disable Disable Prompt Disable
Initialize and script ActiveX controls not marked as safe Disable Disable Disable Prompt Disable
Run ActiveX controls and plug-ins Enable Prompt Enable Enable Disable
Script ActiveX controls marked safe for scripting Prompt Prompt Enable Enable Prompt
Allow cookies that are stored on your computer Enable Disable Enable Enable Disable
Allowed per-session cookies (not stored) Enable Enable Enable Enable Disable
File download Enable Disable Enable Enable Disable
Font download Enable Disable Enable Enable Prompt
Java permissions High Safety High Safety Medium Safety Low Safety High Safety
Access data sources across domains Disable Disable Prompt Enable Disable
Drag and drop or copy and paste files Enable Prompt Enable Enable Prompt
Installation of desktop items Prompt Prompt Prompt Enable Disable
Launching programs and files in an IFRAME Prompt Prompt Prompt Enable Disable
Navigate subframe across different domains Enable Prompt Enable Enable Disable
Software Channel permissions Medium Safety High Safety Medium Safety Low Safety High Safety
Submit nonencrypted form data Enable Prompt Enable Enable Prompt
Userdata persistence Enable Disable Enable Enable Disable
Active scripting Enable Prompt Enable Enable Prompt
Allow paste operation via script Enable Disable Enable Enable Disable
Scripting of Java applets Enable Prompt Enable Enable Disable
Logon Automatic logon only to Intranet zone Anonymous logon Automatic logon only to Intranet zone Automatically log on with current username and password Prompt for username and password



PREVIEW

                                                                          

Not a subscriber?

Start A Free Trial


  
  • Creative Edge
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint