Free Weekly Tech Newsletter

Richard M Balling · 04-20-2002, 02:29 PM

OK, Just a few questions on what the settings do within your security setting on IE6. What effects/restrictions do they have if they were to be set to enable/disable etc?

-Allow META refresh

-Don't promt for client certificate selection when no certificate or only one certificate exists

-Navigate Subframes accross different domains

-Submit nonencrypted from data

-Userdata persistence

Richard

Statica · 04-20-2002, 05:21 PM

- META refresh
Is fine to enable. Its just a client side feature whereby a webpage will automatically reload itself (or forward to a new page) after a certain time has elapsed. For example sites that follow sports might use it.
but its good to know u can disable it in case u have to go to some really annoying website

-Dont prompt for client certificate...
This is best set to disable, it disallows websites from trying to get the client to show identification

-Navigate subframes across different domains
Well this really depends on how security minded you are. Personally I set all my network PCs to say PROMPT. Its helpful to know where you are actually viewing your webpage from. For example if there were frames on a particular page, the URL could show www.abc.com .. but one of the frames could be a page loaded up from: www.lets-spy-on-user.com

-Submit nonencrypted form data
Again its a matter of preference .. not all the sites that use forms have the ability to encrypt the data that you type; so yeah you have to realize that what you submit could be viewed by someone else (like a google search term for example). You could set it on enable or prompt (which gets real annoying), but just be careful to note that if you are filling out a form for sensitive information .. like a credit card based online purchase, the site is a secure one (look for that li'll yellow lock)

- Userdata persistence
Its fine to leave it enabled unless you really want your information secure (like if this were a corporate setting etc)
this should help explain it http://msdn.microsoft.com/library/de...e/overview.asp

Richard M Balling · 04-20-2002, 08:22 PM

Statica

Very thorough explanations. I appreciate your help

Thank you

Richard

04-20-2002, 02:29 PM	#1
Richard M Balling Member (7 bit) Join Date: Apr 2002 Posts: 83	Miscellaneous security settings in IE 6 ? OK, Just a few questions on what the settings do within your security setting on IE6. What effects/restrictions do they have if they were to be set to enable/disable etc? -Allow META refresh -Don't promt for client certificate selection when no certificate or only one certificate exists -Navigate Subframes accross different domains -Submit nonencrypted from data -Userdata persistence Richard Share Share this post on Digg Del.icio.us Technorati Twitter Last edited by Richard M Balling; 04-20-2002 at 02:32 PM.

04-20-2002, 05:21 PM	#2
Statica Premium Member Join Date: Jun 1999 Posts: 9,231	- META refresh Is fine to enable. Its just a client side feature whereby a webpage will automatically reload itself (or forward to a new page) after a certain time has elapsed. For example sites that follow sports might use it. but its good to know u can disable it in case u have to go to some really annoying website -Dont prompt for client certificate... This is best set to disable, it disallows websites from trying to get the client to show identification -Navigate subframes across different domains Well this really depends on how security minded you are. Personally I set all my network PCs to say PROMPT. Its helpful to know where you are actually viewing your webpage from. For example if there were frames on a particular page, the URL could show www.abc.com .. but one of the frames could be a page loaded up from: www.lets-spy-on-user.com -Submit nonencrypted form data Again its a matter of preference .. not all the sites that use forms have the ability to encrypt the data that you type; so yeah you have to realize that what you submit could be viewed by someone else (like a google search term for example). You could set it on enable or prompt (which gets real annoying), but just be careful to note that if you are filling out a form for sensitive information .. like a credit card based online purchase, the site is a secure one (look for that li'll yellow lock) - Userdata persistence Its fine to leave it enabled unless you really want your information secure (like if this were a corporate setting etc) this should help explain it http://msdn.microsoft.com/library/de...e/overview.asp Share Share this post on Digg Del.icio.us Technorati Twitter

04-20-2002, 08:22 PM	#3
Richard M Balling Member (7 bit) Join Date: Apr 2002 Posts: 83	Statica Very thorough explanations. I appreciate your help Thank you Richard Share Share this post on Digg Del.icio.us Technorati Twitter

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes	Rate This Thread
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode	Rate This Thread:

Need Some Help? Type Your Keywords Here:

Still Need Help? Type Your Keywords Here:

Free Weekly Tech Newsletter

Subscribe to THE INSIDER

Need Some Help? Type Your Keywords Here:

Still Need Help? Type Your Keywords Here:

Free Weekly Tech Newsletter