Happy Trails Computer Club

home > security > overview > browser > bypass  
"Bypassing" Security Settings for Internet Explorer

Trusted sites

Many sites won't "work" when you set the Internet security level for Internet Explorer to custom, medium or high. But you can bypass that limitation. Go ahead and set the security level for the "Internet" zone to what you need. Set the security level for the "Trusted Sites" zone to low. Then when a site that you know is trustworthy just won't work, add it to the "Trusted Sites" zone. It will work fine then. Here's how to do it:

Click Tools (View in IE 4.0) > click Internet Options > click the Security tab > click the Trusted Sites icon > click the "Sites..." button > unclick "Require server verification (https:) for all sites in this zone" as shown in the screenshot..

Enter the domain (see example below) of the Web site you want to add in the "Add this Web site..." line > click Add > click OK > click OK again. You should now see the "Safe Sites" symbol (green checkmark) in your IE Status bar*.
* To make the Status bar visible, click View in your IE menu > click the Status bar option.

Trusted site example

Suppose you do online banking. Let's say you start at http://www.banker.com and then are taken to https://secure.banker.com to sign in. Enter *.banker.com as a trusted site and IE will use the security settings for Trusted sites instead of the generic ones for the Internet zone. The "*" is a "wildcard" that substitutes for anything in front of the domain "banker.com", including http://, https://, http://www and https://secure or anything else as long as the domain is banker.com.

Bypass a Proxy

You probably don't use a proxy, but in case you do, here's how to bypass it for selected sites: Click Tools (or View in IE 4) > Internet Options > Connections. Select (click) the dial-up connection you want to use > click "Settings..." and under "Proxy server", click "Advanced...". In the "Exceptions" window, enter the domains you want have bypass the proxy. For example you might have the following list: *.amazon.com; *.banker.com; *.byte.com; *.coldwatercreek.com; *.homedepot; ... Be sure that you have the semicolons and wildcards just right for each domain or none of them will work.
"Distrust any enterprise that requires new clothes." -- Henry David Thoreau
club stuff
help
topics
computers
software
hardware
internet
security
overview
   lost? > index
attack vectors
   attachments
   deception
   email
   hackers
   web sites
   worms
defenses
   #  2  3
safe settings
   system
   browser
   email client
safe practices
   patching
   email
   attachments
   surfing
   file handling
defense tools
   malware
   antivirus
   anti-trojan
   firewalls
defense tests
privacy
resources