Re: mirosoft say this but their product says cant do

"exchange" <exchange@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:1CEAE384-E697-41AC-B6DA-53DA49E5E588@xxxxxxxxxxxxxxxx
<snip>

To make this site a trusted website:

In Internet Explorer, click Tools, and then click Internet Options.
On the Security tab, click the Trusted Sites icon.
Click Sites and under Add this website to the zone, copy and paste these
website addresses.
<snip>

well ok i tried but it does not accept http:// it has to be https://

Oh, c'mon. You mean you can't actually look at the screen to see the option right there that says "Require server verification (https:) on all sites in this zone". So just disable it so you CAN enter an http address (and not just https addresses). I have 4 addresses listed in that zone and none of them have the https: protocol qualifier. In fact, none of them even have a protocol qualifier and instead just look like "*.windowsupdate.microsoft.com" and "officeupdate.microsoft.com" (i.e., there is no http[s]:// qualifier on them). The option only needs to be disabled while you enter the URL string, so you can leave it off or turn it back on after you are done adding the URLs that you want to add to that security zone.

Apparently you chose to configure the Internet security zone to *block* ActiveX downloads (and maybe even running them, too) rather than being prompted to allow or block. If you don't like the big blob in the middle of the browser window asking if you want to allow the download then configure the security settings so just the yellow Infobar shows up under the normal toolbars. In advanced options, set:

- "Automatic prompting for ActiveX control" to Disable. This eliminates the popup window and gives you the Infobar.
- "Download signed ActiveX controls" to Prompt.
- Always set "Download unsigned ActiveX controls" to Disable.
- Set "Run ActiveX controls and plug-ins" to Enable rather than to Prompt. Obviously you must've already decided per the other intervening prompt to download them for a reason. You don't need the double prompting to download and then to run (since it cannot run unless YOU choose to download first).

Then when a site wants to download an ActiveX control, you'll see the one-line yellow Infobar that lets you choose what action to take rather than a popup alert window. You've got your security settings for the Internet zone too "tight" and that's why Microsoft recommends you add the site to the looser Trusted Sites security zone.

.

Relevant Pages

  • RE: Comments on 5 IE vulnerabilities
    ... For those who have opened up the Internet Options, ... Enterprise Security and Privacy Programs ... Despite the severity of some of the vulnerabilities posted by Liu Die Yu, ... I have locked down the My Computer security zone ...
    (Focus-Microsoft)
  • Re: drag and drop prompting
    ... Your current security settings prohibit copying or moving files from this ... First you have to Enable the My Computer Security Zone in Internet Options. ...
    (microsoft.public.windowsxp.general)
  • Re: drag and drop prompting
    ... Your current security settings prohibit copying or moving files from this ... First you have to Enable the My Computer Security Zone in Internet Options. ...
    (microsoft.public.windowsxp.general)
  • Re: drag and drop prompting
    ... I simply turned on prompting for intranet zone on a ... Your current security settings prohibit copying or moving files from this ... First you have to Enable the My Computer Security Zone in Internet Options. ...
    (microsoft.public.windowsxp.general)
  • Re: Security setting in IE6
    ... One potential downside to securely configuring the Internet zone is that ... Working with Internet Explorer 6 Security Settings ... Changes to Functionality in Microsoft Windows XP Service Pack 2: ...
    (microsoft.public.windows.inetexplorer.ie6.browser)