Author: admin

Internet Explorer places restrictions on each Web page it opens. The restrictions are dependent upon the location of the Web page (Internet Intranet Local Machine zone and so on). For example Web pages on the local computer have the fewest security restrictions and reside in the Local Machine zone making the Local Machine security zone a prime target for malicious users. If you enable this policy setting any zone can be protected from zone elevation for all processes. If you disable or do not configure this policy setting processes other than Internet Explorer or those listed in the Process List receive no such protection.

This policy setting defines whether a reference to an object is accessible when the user navigates within the same domain or to a new domain. This policy setting allows administrators to define applications for which they want this security feature to be prevented or allowed. If you enable this policy setting and enter a Value of 1 references to objects are inaccessible after navigation. If you enter a Value of 0 references to objects are still accessible after navigation. The Value Name is the name of the executable. If a Value Name is empty or the Value is not 0 or 1 the policy setting is ignored. Do not enter the Internet Explorer processes in this list: use the related Internet Explorer Processes policy to enable or disable IE processes. If the All Processes policy setting is enabled the processes configured in this box take precedence over that setting. If you disable or do not configure this policy setting the security feature is allowed.

This policy setting defines whether a reference to an object is accessible when the user navigates within the same domain or to a new domain. If you enable this policy setting an object reference is no longer accessible when navigating within or across domains for Internet Explorer processes. If you disable this policy setting an object reference is retained when navigating within or across domains for Internet Explorer processes. If you do not configure this policy setting an object reference is no longer accessible when navigating within or across domains for Internet Explorer processes.

This policy setting defines whether a reference to an object is accessible when the user navigates within the same domain or to a new domain. If you enable this policy setting object reference is no longer accessible when navigating within or across domains for all processes. If you disable or do not configure this policy setting object reference is retained when navigating within or across domains in the Restricted Zone sites.

Internet Explorer may be configured to prevent active content obtained through restricted protocols from running in an unsafe manner. This policy setting controls whether restricting content obtained through restricted protocols is prevented or allowed. This policy setting allows administrators to define applications for which they want restricting content obtained through restricted protocols to be prevented or allowed. If you enable this policy setting and enter a Value of 1 restricting content obtained through restricted protocols is allowed. If you enter a Value of 0 restricting content obtained through restricted protocols is blocked. The Value Name is the name of the executable. If a Value Name is empty or the Value is not 0 or 1 the policy setting is ignored. Do not enter the File Explorer or Internet Explorer processes in this list: use the related Internet Explorer Processes policy to enable or disable these processes. If the All Processes policy setting is enabled the processes configured in this box take precedence over that setting. If you disable or do not configure this policy setting the security feature is allowed.