In my article on how the Local intranet zone in IE8 worked, I decided to check the DEFAULT differences between the zones in IE8. I skipped Restriced sites since it’s not something I use in my lab and I only documented the differences.
Note that I documented the default IE8 levels.
| Setting | Internet = Medium-high | Local intranet = Medium-low | Trusted sites = Medium |
| Allow Scriptlets | Disable | Enable | Disable |
| Automatic prompting for ActiveX controls | Disable | Enable | Disable |
| Only allowe approved domains to use ActiveX without prompt | Enable | Disable | Disable |
| Automatic prompting for file downloads | Disable | Enable | Enable |
| Access data sources across domains |
Disable | Prompt | Disable |
| Allow scripting of Microsoft web browser control |
Disable | Enable | Disable |
| Allow script-initiated windows without size or position constrains |
Disable | Enable | Disable |
| Allow websites to open windows without address or status bars | Disable | Enable | Enable |
| Don’t prompt for client certificate selection when no certificates or only one certificate exists |
Disable | Enable | Disable |
| Include local directory path when uploading files to a server | Disable | Enable | Enable |
| Launching applications and unsafe files |
Prompt | Enable | Prompt |
| Navigate windows and frames across different domains | Disable | Enable | Disable |
| Use Pop-up Blocker | Enable | Disable | Enable |
| Use SmartScreen Filter | Enable | Disable | Enable |
| Allow Programmatic clipboard access | Prompt | Enable | Prompt |
| Allow status bar updates via script | Disable | Enable | Enable |
| Allow websites to prompt for information using scripted windows | Disable | Enable | Enable |
| Enable XSS filter | Enable | Disable | Enable |
| User Authentication – Logon | Automatic logon only in Intranet zone | Automatic logon only in Intranet zone | Automatic logon only in Intranet zone |