Security Settings for Internet Explorer

Internet Explorer has been a consistent target for viruses, Trojans, worms, and spyware applications. The default security settings within Internet Explorer can be changed to prevent some of these programs from being installed.

Internet Explorer has "zones" for different sources of information. Internet Explorer includes five predefined zones: Internet, Local Intranet, Trusted Sites, Restricted Sites, and My Computer.

By default, all web sites that are not added to the Local Intranet zone, the Trusted Sites zone, or the Restricted Sites zone are placed into the Internet zone. As the name implies, the Trusted Sites zone is intended for use with those sites which you trust not to damage your system or steal your information. By default, it is set to low security.

The procedure below explains how to increase the default security settings within Internet Explorer, and to add sites to the Trusted Sites zone. Note: The higher security setting may cause some Web sites to work improperly. If you have difficulty using a Web site after you change this setting and you are sure the site is safe to use, you can add that site to your zone of Trusted Sites. This will allow the site to work properly even with the high security setting.

To raise the security level at which you browse the Web with Internet Explorer:

1. Launch Internet Explorer. Click on the Tools menu, then Internet Options.

2. In the Internet Options dialog box, click the Security tab and then click the Internet icon.

3. Under Security level for this zone, move the slider to High. This sets the security level for all Web sites you visit to High. If no slider is visible, click the Default Level button and then move the slider to High.

4. Click on the OK button to close the Internet Settings dialog box.

Once this setting is in place, the following dialog box may appear when accessing a web site. This means that an ActiveX control is present, and could not be executed with the security settings enabled.

Another dialog box may appear if a hyperlink is accessed that is to start an installation process.

 

To add a Web site to your list of Trusted Sites:

1. Launch Internet Explorer. Click on the Tools menu, then Internet Options.

2. In the Internet Options dialog box, click the Security tab.

3. Click the Trusted Sites icon, and then click the Sites button.

4. In the Trusted Sites dialog box, enter the Web site URL in the Add this Web site to the zone box, and then click the Add button. The Trusted Sites feature allows you to restrict trust to only sites that begin with https:. To include sites that begin with http:, clear the Require server verification (https:) for all sites in this zone checkbox. Wildcards can be used to include multiple sites. The example below adds any URL ending with wvsom.edu to the Trusted Sites zone.

5. Click on the OK button, then on the OK button again to close the Internet Settings dialog box.

An example of a web site that will not function properly with a high security setting in place is Microsoft's WindowsUpdate. If you attempt to go to windowsupdate.microsoft.com without adding it to your Trusted Sites zone, a web page will be displayed similar to the one below.

Some web pages will not display any errors; the screen will simply be blank. The screen below is from an attempt to access the HotMail web site.

Two other options to disable are located under the Internet Options dialog box as well. Launch Internet Explorer and click on Tools, Internet Options. Click on the Advanced tab, and turn off the two following options under the Browsing section: Enable Install on Demand (Internet Explorer) and Enable Install on Demand (Other). Then click on the OK button.