A) When adding (for example) wilderssecurity.com to "Trusted Sites" or "Protected Sites"...

1) Is it necessary to include the www (as in www.wilderssecurity.com)?
2) Is it necessary to include the trailing slash (as in wilderssecurity.com/)?

B) If I want to trust everything at (for example) wilderssecurity.com, which of the following entries would best do the job...

1) wilderssecurity.com
OR
2) wilderssecurity.com/*

C) If I want to block everything at nytimes.com (for example) EXCEPT nytimes.com/crosswordpuzzle.htm, can I? If so how?

D) Is there a config method whereby Internet Explorer (for example) can be allowed ONLY if I personally call it, but not if it's called by a program?

>>NOTE- The above question arises because config only lets me categorize any given program as either "Allow" or "Block" -- there is no "Ask Me" category. (Hint hint) ;)

Hi Bellgamin,

-{ Quote: "A) When adding (for example) wilderssecurity.com to "Trusted Sites" or "Protected Sites"...

1) Is it necessary to include the www (as in www.wilderssecurity.com)?
2) Is it necessary to include the trailing slash (as in wilderssecurity.com/)?

" }-

Ok - first things first - let me describe protected/trusted/not trusted and how that works so we're all on the same page...

Trusted - you know the site is safe. All content is allowed, without alert.

NOT Trusted - you (or we) know the site is NOT safe. So, any potentially dangerous content is blocked, without any alerts.

Unknown - nobody knows - so, we'll alert on potentially dangerous objects only.

PROTECTED sites are a little bit different. They are designed to be your personal, high value sites such as Online Banking - in fact, its specifically for Online Banking. MUCH More restrictive policies are applied to this, so it should be used sparingly.

For example, a PROTECTED site has it's DNS lookup on your computer checked against a third-party trusted DNS to check for DNS trickery. Similarly, protected sites cannot have content linked from them on other sites, nor can they have other sites content embedded in them.

-{ Quote: "
B) If I want to trust everything at (for example) wilderssecurity.com, which of the following entries would best do the job...

1) wilderssecurity.com
OR
2) wilderssecurity.com/*
" }-

You would add *.wilderssecurity.com - the validation occurs on the domain, not the URL. You can also, for example, add things like ad?.adserver.address and set as not trusted.

-{ Quote: "
C) If I want to block everything at nytimes.com (for example) EXCEPT nytimes.com/crosswordpuzzle.htm, can I? If so how?
" }-

No, you can't right now but it sounds like a good feature. The only impact trusted/not trusted has is to determine how potentially dangerous objects are managed.

-{ Quote: "
D) Is there a config method whereby Internet Explorer (for example) can be allowed ONLY if I personally call it, but not if it's called by a program?
" }-
No, not at the moment. I'd actually like this for my kid. My online banking only works in IE *grumble grumble* , and Outlook web access looks awful in anything without IE. And that's all I use IE for. So, maybe we'll do something around here too.

-{ Quote: "
>>NOTE- The above question arises because config only lets me categorize any given program as either "Allow" or "Block" -- there is no "Ask Me" category. (Hint hint) ;)" }-
" }-

Hint received. Expect this in a service release soon.

-{ Quote: "Hint received. Expect this in a service release soon." }-

This sounds good. ;D

Nice hint bellgamin. ;)