About Web Browsers
Information about configuration and security for Firefox and Internet Explorer
Get a New Browser
The latest version of the Firefox browser is available free-of-charge at www.mozilla.com
The latest version of the Internet Explorer browser is available free-of-charge at www.microsoft.com/downloads
Trusted sites
Naming trusted sites lets you specify looser security standards for web sites you know, without doing the same for strangers.
In Internet Explorer...
- Select Tools, Internet Options, Security.
- Mouse-click on the Trusted sites icon
, then on the Sites... button. - At the first field, Add this Web site to the zone, enter the URL where you access the SDS Product Server, for example, www.yourCompany.com:8080.
- Mouse-click on the Add button.
- Do not check the box labeled Require server verification (https:)...
- Mouse-click on OK and OK (IE 6) or Close and OK (IE 7).
ActiveX
ActiveX is the part of Internet Explorer that enables JavaScript to communicate with Java applets, and to create and submit HTTP requests, among other facilities.
If an SDS Product Server shows you a message about a failure of ActiveX, proceed as follows:
In Internet Explorer...
- List the SDS Server among your browser's Trusted Sites, see Trusted Sites, above.
- Make sure that trusted sites are allowed to use ActiveX. See Security for Internet Explorer, below.
AJAX support
AJAX, meaning Asynchronous JavaScript and XML, is an architecture or strategy for pulling new information into an existing web-browser display.
It relies on the relatively new ability of JavaScript to send HTTP requests to servers, then use the response to alter the browser display, without reloading the web page.
The SDS Product Server uses AJAX methods to acquire information about the SDS products installed on the Server. And the on-line help systems in SDS products often use AJAX methods to present help for whatever the product is currently displaying in a browser window.
Like cookies, AJAX methods cannot cross domains. A web page at yourCompany.com can use AJAX methods to send requests to yourCompany.com only. It does not pose a security risk.
When an SDS Product Server gives you a message about a failure to find any SDS products on that server, or some other message about a failure regarding AJAX, HTTP requests, or XML parsing, proceed as follows:
In Internet Explorer...
- List the SDS Server among your browser's Trusted Sites, see Trusted Sites, above.
- Make sure that trusted sites are allowed to use AJAX. See Security for Internet Explorer, below.
Java Applets
SDS products employ Java applets, small Java programs linked into web pages for display by web browsers.
Running applets requires that the client browser can access a Java Runtime Environment (JRE), also called a Java plug-in or Java Virtual Machine (JVM).
SDS products further require that the client's JRE and the browser's JavaScript interpreter can communicate with each other.
Enable applets as follows:
In Firefox...
- Intall or re-install a JRE at the client machine. For instructions, see About Java
- In a Firefox window, see Tools, Options..., Content.
- Check
Enable Java.
In Internet Explorer...
- Install or re-install a JRE at the client machine. For instructions, see About Java
- List the SDS Server among your browser's Trusted Sites, see Trusted Sites, above.
- Make sure that trusted sites are allowed to use Java. See Security for Internet Explorer, below.
JavaScript
The procedure described below will allow a browser to process JavaScript codes in web pages on an SDS Product Server.
JavaScript runs within the browser only; it does not have any power to otherwise affect your machine. JavaScript is not the same as Java. It is similar, but not identical to, Microsoft's JScript.
In Firefox...
- See Tools, Options..., Content.
- Check Enable JavaScript.
In Internet Explorer...
- List the SDS Server among your browser's Trusted Sites, see Trusted Sites, above.
- Make sure that trusted sites are allowed to use JavaScript. See Security for Internet Explorer, below.
Meta Refresh
The procedure described below will very slightly loosen browser security. For an SDS Product Server, it will allow your browser to read a meta-refresh tag like the following:
<meta http-equiv="refresh" content="0;url=test.htm">
then send the browser forward to the page test.htm.
In Internet Explorer...
- List the SDS Server among your browser's Trusted Sites, see Trusted Sites, above.
- Make sure that trusted sites are allowed to use meta refresh tags. See Security for Internet Explorer, below.
Pop-up Windows
SDS products require that a browser allow them to create new browser windows, a.k.a. pop-ups.
Pop-ups may open in a new browser window, or in a new tab of the existing window. See the instructions below regarding Tabbed browsing.
Set your browser to allow pop-ups as described below.
In Firefox...
- Select Tools, Options..., Content.
- At the first field, Block Popup Windows, click on Exceptions or Allowed Sites.
- At the first field, Address of web site, enter the URL where you access the SDS Server, for example, www.yourCompany.com:8080.
- Mouse-click on Allow, then Close, then OK.
In Internet Explorer...
First, list the SDS Server among your browser's Trusted Sites, see Trusted Sites, above.
Second, proceed as follows:
- Select Tools, Pop-up Blocker, Settings.
- At the first field, Address of website to allow, enter the URL where you access the SDS Product Server. For example, www.yourCompany.com:8080.
- Mouse-click on Add, then Close.
The Google Toolbar may also block pop-ups, in addition to and regardless of pop-up settings in IE itself. If you have a Google Toolbar installed, prevent it from blocking a pop-up as follows:
- Navigate IE to the website in question, i.e. the site where the desired pop-up is blocked.
- Mouse-click on the pop-up icon and select from the menu: Always allow pop-ups from host.name.
Other tools added onto IE may cause the same problem as the Google Toolbar. You can disable all such add-ons, also called "browser extensions," as follows:
- Select Tools, Internet Options, Advanced.
- Scroll to Browsing, Enable third-party browser extensions*
- Mouse-click on the box to un-check it,
Enable third-party browser extensions* - At the lower-right of the dialogue box, mouse-click on Apply and OK.
- Shut down and re-start the IE browser.
Security for Inernet Explorer
When a client-server application fails to work properly with Internet Explorer, the first step is to adjust IE security as follows:
First, list the SDS Server among your browser's Trusted Sites, see Trusted Sites, above.
Second, set the security level for trusted sites to Low:
- Select Tools, Internet Options, Security.
- Mouse-click on the Trusted sites icon .
- At the lower-left of the panel, drag the slider downward.
- Mouse-click on OK.
Or you can manually adjust IE's security parameters, as follows...
- Select Tools, Internet Options, Security.
- Mouse-click on the Trusted sites icon (assuming the SDS Product Server is listed among the trusted sites).
- Mouse-click on the Custom level... button.
- At a minimum, SDS products require that you select
for the following options: 
ActiveX controls and plug-ins
Run ActiveX controls and plug-ins
Allows Java applets to load, the Java JRE to run, and AJAX scripting to create HTTP requests.
If not enabled, and a page includes an applet, IE presents a warning bar at the top of the window.
Script ActiveX controls marked safe for scripting
Allows JavaScript to communicate with Java applets and the JRE.
Miscellaneous
Allow META REFRESH
For details, see the heading Meta refresh, above.
Scripting
Active scripting
Allows JavaScript to run.
Allow status bar updates via script
Allows JavaScript to write brief messages to the status bar.
- Mouse-click on OK, Yes, OK to return to the main browser window.
- Shut-down the browser and re-start it.
Status Bar
The status bar is the gray bar at the bottom of the browser window.
If it is not displayed, select View, Status Bar.
In Internet Explorer 7...
Typically, web pages can use JavaScript to write brief messages to the status bar. But that access may be denied in Internet Explorer 7.
To allow JavaScript access to the status bar...
- List the SDS Server among your browser's Trusted Sites, see Trusted Sites, above.
- Make sure that trusted sites are allowed to use Java. See Security for Internet Explorer, below.
Tabbed Browsing
When an SDS product opens a new browser window, that window might open in a new tab of the current window, or in new window separate from the current window. You can specify which you prefer.
In particular, you may find it helpful to turn off tabbed browsing in order to use the help system built into SDS products. The help windows are intended to be read along-side live product displays, so that you can read the help and the data display at the same time. That's only possible if you disable tabbed browsing.
In Firefox...
- Select Tools, Options..., Tabs.
- See New pages should be opened in:
- Select the option you prefer.
- Click on OK.
In Internet Explorer 7...
- Select Tools, Internet Options, General.
- See Tabs near the bottom of the window. Click on Settings.
- See Enable Tabbed Browsing and When a pop-up is encountered. Select the options you prefer.
- Click on OK and OK, then re-start the browser.