Hacking IE Security Zones

re: Hacking IE Security Zones

Tejas Patel — Thu, 29 Jan 2004 05:51:00 GMT

Interesting article indeed. Thanks for showing us the tips.

re: Hacking IE Security Zones

Eusebio C Rufian-Zilbermann — Thu, 29 Jan 2004 15:44:00 GMT

Thank you very much for describing in detail how to create custom zones. It will be very useful for creating "that zone" that I've been missing all along: "Temporarily trusted sites" (to avoid cluttering my "real" trusted sites zone when I just want to access a specific site on a one-time basis)

Hacking IE Security Zones

Dana Epp's ramblings at the Sanctuary — Thu, 29 Jan 2004 21:42:00 GMT

I am not one to promote IE since I am a real FireBird fan, but if you MUST run IE, and want to lock it down even further, consider reading Peter's entry on Hacking IE Security Zones. With just a few registry tweaks you can create one or more "Partially Trusted Zone(s)", ratchet down the My Computer Zone and change the defaults and minimum levels for all the zones. Fun stuff. YMMV. Oh, and remember, if you wanna muck with your registry... do so at your own risk! (Export the working config first!)...

re: Hacking IE Security Zones

jeffdav — Fri, 30 Jan 2004 01:20:00 GMT

I would not encourage anyone to use custom zones. I would recommend you read the "Local Machine Lockdown" section of this document to see if (the upcoming) Windows XP Service Pack 2 update will solve your problems. The document: http://download.microsoft.com/download/8/7/9/879a7b46-5ddb-4a82-b64d-64e791b3c9ae/WinXPSP2_Documentation.doc

Windows XP SP 2

Office Development, Security, Randomness... — Sat, 20 Mar 2004 08:43:00 GMT

re: Hacking IE Security Zones

DAS — Thu, 08 Apr 2004 22:52:00 GMT

in ie security custom level I have a blank page.. tryed to reset to default and still nothing can any one help??

re: Hacking IE Security Zones

AGuardDog — Mon, 24 May 2004 15:57:00 GMT

There is a program at this site that does all that is in your article without problems.

re: Hacking IE Security Zones

Ray Robson — Mon, 24 May 2004 19:56:00 GMT

Can anyone give me some advice it seems i keep on getting files added to my reg.... in the zone map thinie.....of a adult nature....my friend said to search in windows etc... all *exe files and remove it....but it appears there isnt...this is leading to my restarting sometimes when on net? unsure why> please advise have reinstalled etc... Cheers Ray.

re: Hacking IE Security Zones

Dennis Sunderhaus — Tue, 10 Aug 2004 15:33:00 GMT

Everybody mentions locking down IE but I have not found the answer to a simple IE problem. How do you lock down the URL line so a drive letter cannot be transmitted. This opens the whole drive for executions like CMD.exe etc.

re: Hacking IE Security Zones

Sam Hasler — Wed, 13 Apr 2005 19:24:08 GMT

This will really help me with developing websites where I need to test how it looks in IE with different feature enabled/disabled.

I've added a security zone with ActiveX disabled so I can more easily test the image fallback for a Flash animation.

This is even more usefull with the Mark of the Web: http://msdn.microsoft.com/library/default.asp?url=/workshop/author/dhtml/overview/motw.asp

I added "about:NoActiveX" to the site list for that zone and then inserted the comment < !-- saved from url=(0015)about:NoActiveX -- > to the top of a html file on my computer to put it in that zone.

IE already recognizes "about:internet" and it wouldn't be hard to add sites to the trusted/untrusted lists.

So with a simple change to a comment I can make web pages I'm developing run any custom security zone I want.

Sam