Bypassing Security Constraints
Trusted Sites Zone
Many sites won't "work" well, if at all, when you set the Internet security level for Internet Explorer to custom, medium or high. But you can bypass those constraints. Leave the security level for the "Internet" zone where you want it. Set the security level for the "Trusted Sites" zone to low. When a site that you're sure is trustworthy just won't work, add it to the "Trusted Sites" zone. It will work fine then. Here's how to do it:
Click Tools (View in IE 4.0) > click Internet Options > click the Security tab > click the Trusted Sites icon > click the "Sites..." button > unclick "Require server verification (https:) for all sites in this zone" as shown in the screenshot..
Enter the domain (see example below) of the Web site you want to add in the "Add this Web site..." line > click Add > click OK > click OK again. You should now see the "Safe Sites" symbol (green checkmark) in your IE Status bar*.
* To make the Status bar visible, click View in your IE menu > click the Status bar option.Trusted site example
Suppose you do online banking. Let's say you start at http://www.banker.com, which takes you to the secure site -- https://secure.banker.com -- to sign in. Enter *.banker.com as a trusted site and IE will use the security settings for Trusted sites instead of the generic ones for the Internet zone. The "*" is a "wildcard" that substitutes for anything in front of the domain "banker.com", including http://, https://, http://www and https://secure or anything else as long as the domain is banker.com.
Bypass a proxy
You probably don't use a proxy, but in case you do, here's how to bypass it for selected sites: Click Tools (or View in IE 4) > Internet Options > Connections. Select (click) the dial-up connection you want to use > click "Settings..." and under "Proxy server", click "Advanced...". In the "Exceptions" window, enter the domains you want have bypass the proxy. For example you might have the following list: *.amazon.com; *.banker.com; *.byte.com; *.coldwatercreek.com; *.homedepot; ... Be sure that you have the semicolons and wildcards just right for each domain or none of them will work.
Windows scripting host
Some unenlightened sites still need Windows scripting host to work properly. If you used Symantec's "Noscript.exe" program to disable Windows scripting host, as I recommended, you can easily re-enable WSH if you need it temporarily. Put a shortcut to noscript.exe on your Desktop or in your "Start" menu to make it easier.- • attack vectors
- deception the #1 threat
- phishing #1 deception
- poisoned websites
- poisoned email
- email attachments
- downloads
- spam (scams and phishing)
- hackers and worms
- popup warnings
- • malicious content
- spyware
- viruses and worms
- trojans
- • backup is security job one
- • develop your "web smarts"
- don't get hooked
- guard against spyware
- be careful with email
- fear attachments
- surf safely
- • tighten security settings
- windows
- browsers
- email clients
- • defense tools and software
- firewalls
- hardware firewalls
- anti-virus
- anti-spyware/-malware
- all-purpose security suites
- • patch and upgrade software
- • bonus: double your security
- • test your protection
- • protect your privacy
- • WiFi security