Category: At least Internet Explorer 8.0
Turn off Data Execution Prevention
This policy setting allows you to turn off the Data Execution Prevention feature for Internet Explorer on Windows Server 2008 Windows Vista with SP1 and Windows XP with SP3. If you enable this policy setting Internet Explorer does not turn on Data Execution Prevention on platforms that support the SetProcessDEPPolicy function. If you disable or do not configure this policy setting Internet Explorer uses the SetProcessDEPPolicy function to turn on Data Execution Prevention on platforms that support the function. This policy setting has no effect if Windows has been configured to enable Data Execution Prevention.
Turn off Data URI support
This policy setting allows you to turn on or turn off Data URI support. A Data URI allows web developers to encapsulate images and . css files within the body of the URL and optionally encode them by using base 64 encoding. Malware filters or other network-based filters may not properly filter encapsulated data. If you enable this policy setting Data URI support is turned off. Without Data URI support a Data URI will be interpreted as a failed URL. If you disable this policy setting Data URI support is turned on. If you do not configure this policy setting Data URI support can be turned on or off through the registry.
Turn off Data URI support
This policy setting allows you to turn on or turn off Data URI support. A Data URI allows web developers to encapsulate images and . css files within the body of the URL and optionally encode them by using base 64 encoding. Malware filters or other network-based filters may not properly filter encapsulated data. If you enable this policy setting Data URI support is turned off. Without Data URI support a Data URI will be interpreted as a failed URL. If you disable this policy setting Data URI support is turned on. If you do not configure this policy setting Data URI support can be turned on or off through the registry.
Turn on Basic feed authentication over HTTP
This policy setting allows users to have their feeds authenticated through the Basic authentication scheme over an unencrypted HTTP connection. If you enable this policy setting the Windows RSS Platform authenticates feeds to servers by using the Basic authentication scheme in combination with a less secure HTTP connection. If you disable or do not configure this policy setting the Windows RSS Platform does not authenticate feeds to servers by using the Basic authentication scheme in combination with a less secure HTTP connection. A developer cannot change this policy setting through the Feed APIs.
Turn on Basic feed authentication over HTTP
This policy setting allows users to have their feeds authenticated through the Basic authentication scheme over an unencrypted HTTP connection. If you enable this policy setting the Windows RSS Platform authenticates feeds to servers by using the Basic authentication scheme in combination with a less secure HTTP connection. If you disable or do not configure this policy setting the Windows RSS Platform does not authenticate feeds to servers by using the Basic authentication scheme in combination with a less secure HTTP connection. A developer cannot change this policy setting through the Feed APIs.
Turn on certificate address mismatch warning
This policy setting allows you to turn on the certificate address mismatch security warning. When this policy setting is turned on the user is warned when visiting Secure HTTP (HTTPS) websites that present certificates issued for a different website address. This warning helps prevent spoofing attacks. If you enable this policy setting the certificate address mismatch warning always appears. If you disable or do not configure this policy setting the user can choose whether the certificate address mismatch warning appears (by using the Advanced page in the Internet Control panel).
Turn on certificate address mismatch warning
This policy setting allows you to turn on the certificate address mismatch security warning. When this policy setting is turned on the user is warned when visiting Secure HTTP (HTTPS) websites that present certificates issued for a different website address. This warning helps prevent spoofing attacks. If you enable this policy setting the certificate address mismatch warning always appears. If you disable or do not configure this policy setting the user can choose whether the certificate address mismatch warning appears (by using the Advanced page in the Internet Control panel).
Turn on Cross-Site Scripting Filter
This policy controls whether or not the Cross-Site Scripting (XSS) Filter will detect and prevent cross-site script injections into websites in this zone. If you enable this policy setting the XSS Filter is turned on for sites in this zone and the XSS Filter attempts to block cross-site script injections. If you disable this policy setting the XSS Filter is turned off for sites in this zone and Internet Explorer permits cross-site script injections.
Turn on Cross-Site Scripting Filter
This policy controls whether or not the Cross-Site Scripting (XSS) Filter will detect and prevent cross-site script injections into websites in this zone. If you enable this policy setting the XSS Filter is turned on for sites in this zone and the XSS Filter attempts to block cross-site script injections. If you disable this policy setting the XSS Filter is turned off for sites in this zone and Internet Explorer permits cross-site script injections.
Turn on Cross-Site Scripting Filter
This policy controls whether or not the Cross-Site Scripting (XSS) Filter will detect and prevent cross-site script injections into websites in this zone. If you enable this policy setting the XSS Filter is turned on for sites in this zone and the XSS Filter attempts to block cross-site script injections. If you disable this policy setting the XSS Filter is turned off for sites in this zone and Internet Explorer permits cross-site script injections.