Turn on Cross-Site Scripting Filter
This policy controls whether or not the Cross-Site Scripting (XSS) Filter will detect and prevent cross-site script injections into websites in this zone. If you enable this policy setting the XSS Filter is turned on for sites in this zone and the XSS Filter attempts to block cross-site script injections. If you disable this policy setting the XSS Filter is turned off for sites in this zone and Internet Explorer permits cross-site script injections.
Turn on Cross-Site Scripting Filter
This policy controls whether or not the Cross-Site Scripting (XSS) Filter will detect and prevent cross-site script injections into websites in this zone. If you enable this policy setting the XSS Filter is turned on for sites in this zone and the XSS Filter attempts to block cross-site script injections. If you disable this policy setting the XSS Filter is turned off for sites in this zone and Internet Explorer permits cross-site script injections.
Turn on Cross-Site Scripting Filter
This policy controls whether or not the Cross-Site Scripting (XSS) Filter will detect and prevent cross-site script injections into websites in this zone. If you enable this policy setting the XSS Filter is turned on for sites in this zone and the XSS Filter attempts to block cross-site script injections. If you disable this policy setting the XSS Filter is turned off for sites in this zone and Internet Explorer permits cross-site script injections.
Turn on Cross-Site Scripting Filter
This policy controls whether or not the Cross-Site Scripting (XSS) Filter will detect and prevent cross-site script injections into websites in this zone. If you enable this policy setting the XSS Filter is turned on for sites in this zone and the XSS Filter attempts to block cross-site script injections. If you disable this policy setting the XSS Filter is turned off for sites in this zone and Internet Explorer permits cross-site script injections.
Submit non-encrypted form data
This policy setting allows you to manage whether data on HTML forms on pages in the zone may be submitted. Forms sent with SSL (Secure Sockets Layer) encryption are always allowed; this setting only affects non-SSL form data submission. If you enable this policy setting information using HTML forms on pages in this zone can be submitted automatically. If you select Prompt in the drop-down box users are queried to choose whether to allow information using HTML forms on pages in this zone to be submitted. If you disable this policy setting information using HTML forms on pages in this zone is prevented from being submitted. If you do not configure this policy setting users are queried to choose whether to allow information using HTML forms on pages in this zone to be submitted.
Submit non-encrypted form data
This policy setting allows you to manage whether data on HTML forms on pages in the zone may be submitted. Forms sent with SSL (Secure Sockets Layer) encryption are always allowed; this setting only affects non-SSL form data submission. If you enable this policy setting information using HTML forms on pages in this zone can be submitted automatically. If you select Prompt in the drop-down box users are queried to choose whether to allow information using HTML forms on pages in this zone to be submitted. If you disable this policy setting information using HTML forms on pages in this zone is prevented from being submitted. If you do not configure this policy setting users are queried to choose whether to allow information using HTML forms on pages in this zone to be submitted.
Software channel permissions
This policy setting allows you to manage software channel permissions. If you enable this policy setting you can choose the following options from the drop-down box. Low safety to allow users to be notified of software updates by e-mail software packages to be automatically downloaded to users’ computers and software packages to be automatically installed on users’ computers. Medium safety to allow users to be notified of software updates by e-mail and software packages to be automatically downloaded to (but not installed on) users’ computers. High safety to prevent users from being notified of software updates by e-mail software packages from being automatically downloaded to users’ computers and software packages from being automatically installed on users’ computers. If you disable this policy setting permissions are set to high safety. If you do not configure this policy setting permissions are set to Medium safety.
Software channel permissions
This policy setting allows you to manage software channel permissions. If you enable this policy setting you can choose the following options from the drop-down box. Low safety to allow users to be notified of software updates by e-mail software packages to be automatically downloaded to users’ computers and software packages to be automatically installed on users’ computers. Medium safety to allow users to be notified of software updates by e-mail and software packages to be automatically downloaded to (but not installed on) users’ computers. High safety to prevent users from being notified of software updates by e-mail software packages from being automatically downloaded to users’ computers and software packages from being automatically installed on users’ computers. If you disable this policy setting permissions are set to high safety. If you do not configure this policy setting permissions are set to Medium safety.
Run . NET Framework-reliant components signed with Authenticode
This policy setting allows you to manage whether . NET Framework components that are signed with Authenticode can be executed from Internet Explorer. These components include managed controls referenced from an object tag and managed executables referenced from a link. If you enable this policy setting Internet Explorer will execute signed managed components. If you select Prompt in the drop-down box Internet Explorer will prompt the user to determine whether to execute signed managed components. If you disable this policy setting Internet Explorer will not execute signed managed components. If you do not configure this policy setting Internet Explorer will execute signed managed components.
Run . NET Framework-reliant components signed with Authenticode
This policy setting allows you to manage whether . NET Framework components that are signed with Authenticode can be executed from Internet Explorer. These components include managed controls referenced from an object tag and managed executables referenced from a link. If you enable this policy setting Internet Explorer will execute signed managed components. If you select Prompt in the drop-down box Internet Explorer will prompt the user to determine whether to execute signed managed components. If you disable this policy setting Internet Explorer will not execute signed managed components. If you do not configure this policy setting Internet Explorer will execute signed managed components.