Tag: User Configuration

This policy setting allows you to manage MIME sniffing for file promotion from one type to another based on a MIME sniff. A MIME sniff is the recognition by Internet Explorer of the file type based on a bit signature. If you enable this policy setting the MIME Sniffing Safety Feature will not apply in this zone. The security zone will run without the added layer of security provided by this feature. If you disable this policy setting the actions that may be harmful cannot run; this Internet Explorer security feature will be turned on in this zone as dictated by the feature control setting for the process. If you do not configure this policy setting the MIME Sniffing Safety Feature will not apply in this zone.

This policy setting allows you to set options for dragging content from one domain to a different domain when the source and destination are in the same window. If you enable this policy setting and click Enable users can drag content from one domain to a different domain when the source and destination are in the same window. Users cannot change this setting. If you enable this policy setting and click Disable users cannot drag content from one domain to a different domain when the source and destination are in the same window. Users cannot change this setting in the Internet Options dialog. In Internet Explorer 10 if you disable this policy setting or do not configure it users cannot drag content from one domain to a different domain when the source and destination are in the same window. Users can change this setting in the Internet Options dialog. In Internet Explorer 9 and earlier versions if you disable this policy setting or do not configure it users can drag content from one domain to a different domain when the source and destination are in the same window. Users cannot change this setting in the Internet Options dialog.

This policy setting allows you to set options for dragging content from one domain to a different domain when the source and destination are in different windows. If you enable this policy setting and click Enable users can drag content from one domain to a different domain when the source and destination are in different windows. Users cannot change this setting. If you enable this policy setting and click Disable users cannot drag content from one domain to a different domain when both the source and destination are in different windows. Users cannot change this setting. In Internet Explorer 10 if you disable this policy setting or do not configure it users cannot drag content from one domain to a different domain when the source and destination are in different windows. Users can change this setting in the Internet Options dialog. In Internet Explorer 9 and earlier versions if you disable this policy or do not configure it users can drag content from one domain to a different domain when the source and destination are in different windows. Users cannot change this setting.

This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful especially when coming from an untrusted zone. If you enable this policy setting users can run unsigned controls without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to allow the unsigned control to run. If you disable this policy setting users cannot run unsigned controls. If you do not configure this policy setting users cannot run unsigned controls.

This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting users can drag files or copy and paste files from this zone automatically. If you select Prompt in the drop-down box users are queried to choose whether to drag or copy files from this zone. If you disable this policy setting users are prevented from dragging files or copying and pasting files from this zone. If you do not configure this policy setting users can drag files or copy and paste files from this zone automatically.

This policy setting allows you to manage whether file downloads are permitted from the zone. This option is determined by the zone of the page with the link causing the download not the zone from which the file is delivered. If you enable this policy setting files can be downloaded from the zone. If you disable this policy setting files are prevented from being downloaded from the zone. If you do not configure this policy setting files can be downloaded from the zone.

This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting HTML fonts can be downloaded automatically. If you enable this policy setting and Prompt is selected in the drop-down box users are queried whether to allow HTML fonts to download. If you disable this policy setting HTML fonts are prevented from downloading. If you do not configure this policy setting HTML fonts can be downloaded automatically.

This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy users can download signed controls without user intervention. If you select Prompt in the drop-down box users are queried whether to download controls signed by publishers who aren’t trusted. Code signed by trusted publishers is silently downloaded. If you disable the policy setting signed controls cannot be downloaded. If you do not configure this policy setting users are queried whether to download controls signed by publishers who aren’t trusted. Code signed by trusted publishers is silently downloaded.

This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. If you enable this policy setting and the drop-down box is set to Enable the user does not receive a security information message (This page contains both secure and nonsecure items. Do you want to display the nonsecure items?) and nonsecure content can be displayed. If the drop-down box is set to Prompt the user will receive the security information message on the Web pages that contain both secure (https://) and nonsecure (http://) content. If you disable this policy setting users cannot receive the security information message and nonsecure content cannot be displayed. If you do not configure this policy setting the user will receive the security information message on the Web pages that contain both secure (https://) and nonsecure (http://) content.