Windows Server 2003 (or maybe it's just Internet Explorer 7) has a number of wonderful features that will make every day a cheery adventure. Among them are draconian security policies that, beyond making little sens, are controlled from places they don't belong. Apparently a mapped network share is considered a web page. Who would have guessed that? Well, if you get the error in the title when trying to run or even right-click something from a share on the network, it can be fixed from Internet Options. From IE7, press 'alt' to show the menu, go to Tools>Internet Options. In the Internet Options window, go to the security tab, select the 'Internet' zone and click 'Custom' near the bottom right. In the resulting window under 'Miscellaneous', set things that say 'disable' to 'prompt' or 'enable'. I'm not sure which one controls the above mentioned behavior, but it ought to be fairly obvious which are involved; just allow them.
Your current security settings do not allow this action
No TrackBacks
TrackBack URL: http://dinomite.net/cgi-bin/mt/mt-tb.cgi/111
9 Comments
Leave a comment
Pages
Recent Entries
Tag Cloud
Categories
Monthly Archives
- February 2010 (2)
- January 2010 (1)
- December 2009 (1)
- November 2009 (1)
- October 2009 (1)
- September 2009 (1)
- July 2009 (1)
- May 2009 (1)
- April 2009 (4)
- March 2009 (4)
- February 2009 (2)
- January 2009 (3)
- December 2008 (4)
- November 2008 (1)
- October 2008 (3)
- September 2008 (7)
- August 2008 (2)
- July 2008 (1)
- June 2008 (3)
- May 2008 (5)
- April 2008 (5)
- March 2008 (11)
- February 2008 (7)
- January 2008 (13)
- December 2007 (6)
- November 2007 (7)
- October 2007 (8)
- September 2007 (8)
- August 2007 (11)
- July 2007 (6)
- June 2007 (9)
- May 2007 (3)
- April 2007 (8)
- March 2007 (5)
- February 2007 (14)
- January 2007 (6)
- December 2006 (3)
- November 2006 (5)
- July 2006 (2)
- May 2006 (3)
- April 2006 (8)
- March 2006 (8)
- February 2006 (11)
- January 2006 (23)
- December 2005 (2)
About this Entry
This page contains a single entry by Drew Stephens published on April 13, 2007 8:34 AM.
Wikipedia recent changes and watchlist was the previous entry in this blog.
Introduction to Genres of Electronic Music through Remixes is the next entry in this blog.
Find recent content on the main index or look in the archives to find all content.
I found that I had to change IE7's settings under "Launching applications and unsafe files" in order to be able to open zip files from mapped drives.
It's an amazing new "feature". :( I struggled with this problem 5 minutes ago 'till I found this site.
Hehe, thanks for this. Never would have thought to look under IE!
Instead you can:
(in IE) tools, options, 'secutity' tab. select the Local Intranet zone Click 'Sites' Add "file://-server-name-"
this adds all file connections to that server to the local (super-trusted) intranet zone. this includes mapped drives to that server
IE7 (on server 2003 SP2 R2) no longer appears to automatically have 'LocalSubnet' in the 'local intranet' zone.
Key reasoning behind this is probably to (generally) block executing files from file servers etc and thus close off one vector of virus/trojan attack.. A very good (security) move by MS. [IMHO]. Where a centralised 'repositry' deployment server is needed (where all the EXE install sources are kept), this can be set READ-ONLY and added to the trusted zone.. A good case for a 'dirt cheap' NAS disk drive.. In a domain (AD) this is more than likely acheivable inside 30 seconds using GPO.
With R2's (or is it SP2) File Screening service, one can finally achieve a serious level of network control over users downloading exe's etc..
Dave
I hve been struggling for almost an hour to open a fu^^^ing zip file, till I found your blog. This is fu^^^^ing UNBELIEVABLE. Christ... I cannot believe that someone wants to use this crap on servers without being forced with weapons... Thank you so much, anyway. S.
Thank you !
This one had me stumped for a while
Andy Kelly
Here is another option that worked for me. My situation might be slightly different. Copied a .ZIP to a hardened DMZ server (W2K3). The file is now local. It is not on a share. I found answers suggesting the uninstall of Internet Explorer Enhanced Security Configuration (Windows Add/Remove Components).
My approach -- Start | Run | Cmd.exe In the new command window console, "cd" to the location of my ZIP. Type "myzipfile.zip" to run it with the default program (being the Windows built-in "Compressed (zipped) folders" plugin).
This successfully opened an explorer window of the compressed folder, which I could then extract.
This is a completely pointless security feature and atleast could have been implemented to show a helpful error message that directs you to IE7 to change the setting. As it is, it makes no sense whatsoever to manage such security in IE7 and not many people would think to look there. Ok you can google it and find the problem within minutes, but it's just downright unhelpful and OTT security.
OMG. Applications Server auto updated to IE8 and i had that problem. Bloody useless feature if you ask me. Had all folder permissions set but couldnt remote run the files... now i know why.