Category: At least Internet Explorer 6.0 in Windows XP with Service Pack 2 or Windows Server 2003 with Service Pack 1

This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting HTML fonts can be downloaded automatically. If you enable this policy setting and Prompt is selected in the drop-down box users are queried whether to allow HTML fonts to download. If you disable this policy setting HTML fonts are prevented from downloading. If you do not configure this policy setting HTML fonts can be downloaded automatically.

This policy setting allows you to manage whether file downloads are permitted from the zone. This option is determined by the zone of the page with the link causing the download not the zone from which the file is delivered. If you enable this policy setting files can be downloaded from the zone. If you disable this policy setting files are prevented from being downloaded from the zone. If you do not configure this policy setting files can be downloaded from the zone.

This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful especially when coming from an untrusted zone. If you enable this policy setting users can run unsigned controls without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to allow the unsigned control to run. If you disable this policy setting users cannot run unsigned controls. If you do not configure this policy setting users cannot run unsigned controls.

This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy users can download signed controls without user intervention. If you select Prompt in the drop-down box users are queried whether to download controls signed by publishers who aren’t trusted. Code signed by trusted publishers is silently downloaded. If you disable the policy setting signed controls cannot be downloaded. If you do not configure this policy setting users can download signed controls without user intervention.

This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. If you enable this policy setting and the drop-down box is set to Enable the user does not receive a security information message (This page contains both secure and nonsecure items. Do you want to display the nonsecure items?) and nonsecure content can be displayed. If the drop-down box is set to Prompt the user will receive the security information message on the Web pages that contain both secure (https://) and nonsecure (http://) content. If you disable this policy setting users cannot receive the security information message and nonsecure content cannot be displayed. If you do not configure this policy setting the user will receive the security information message on the Web pages that contain both secure (https://) and nonsecure (http://) content.