Enable: The browser launches programs or opens files contained in an inline frame (HTML element <iframe>).
Prompt: The browser launches programs or opens files contained in an inline frame (HTML element <iframe> after confirmation form the user.
Disable: The browser does not launch programs or open files contained in an inline frame (HTML element <iframe>).
Launching applications and unsafe files: Configure how the browser handles applications and files considered unsafe for the current security zone.
Enable: Launch applications and unsafe files.
Launch applications and unsafe files after confirmation form the user.
Disable: Do not launch applications and unsafe files.
Drag and drop or copy and paste files
Enable: Allow dropping as well as copying and pasting files.
Prompt: Allow dropping as well as copying and pasting files after confirmation form the user.
Disable: Do not Allow dropping or as copying and pasting files.
Display mixed content: Configure how the browser handles web pages containing insecure as well as secure contents.
Enable: Display mixed contents.
Prompt: Display mixed contents after confirmation from the user.
Disable: Do not display mixed content.
Allow websites to use restricted protocols for active content: Configure how the browser handles active contents delivered via protocols disabled by the current security settings: res:, shell:
Enable: Display pages containing active contents delivered via restricted protocols.
Prompt: Display pages containing active contents delivered via restricted protocols after confirmation from the user.
Disable: Do not display pages containing active contents delivered via restricted protocols.
Access data sources across domains
Enable: The browser may access data sources from other security zones via Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO).
Prompt: The browser may access data sources from other security zones via Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO) after confirmation form the user.
Disable: The browser must not access data sources from other security zones via Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO).
Navigate windows and frames across different domains
Enable: The browser may open subframes from other doamins and access applications on other domains.
Prompt: The browser may open subframes from other doamins and access applications on other domains after confirmation from the user.
Disable: The browser must not open subframes from other doamins and access applications on other domains.
Submit non-encrypted form data: Configure, whether form data may be submitted via plain HTTP in this security zone. SSL-secured submission is always allowed.
Enable: Form data may be submitted over plain HTTP in this zone.
Prompt: Form data may be submitted over plain HTTP in this zone after confirmation from the user.
Disable: Form data must not be submitted over plain HTTP in this zone.