Check or Attack Name: IE view Certificate

The web browser issues no warning when viewing data on a remote site containing a security certificate that does not match its Internet address. The user may be unable to distinguish between secure and insecure content.

Depending on your version, select one of the following choices in Internet Explorer:

• In Internet Explorer 2.x, from the Options dialog box, go to Security and enable Check Security Certificate Before Viewing.
  1. Open Internet Explorer 2.x.
  2. From the View menu, select Options.
  3. Click the Security tab.
  4. Locate the security feature and set it to the recommended value.
  5. Click OK to apply the changes.

• In Internet Explorer 3.x, from the Options dialog box, go to Advanced and enable Warn About Invalid Site Certificates.
  1. Open Internet Explorer 3.x.
  2. From the View menu, select Options.
  3. Click the Security tab.
  4. Locate the security feature and set it to the recommended value.
  5. Click OK to apply the changes.

• In Internet Explorer 4.x, from the Internet Options dialog box, go to Advanced and enable Warn about invalid site certificates.
  1. Open Internet Explorer 4.x.
  2. From the View menu, select Internet Options.
  3. Click the Security tab.
  4. Select the appropriate Zone.
  5. Click Custom (for expert users).
  6. Click Settings.
  7. Locate the security feature and set it to the recommended value.
  8. Click OK twice to apply the changes.

• In Internet Explorer 5.x, from the Internet Options dialog box, go to the Advanced tab and enable the Warn about invalid site certificates option.

  1. Open Internet Explorer 5.x.
  2. From the Tools menu, select Internet Options.
  3. Click the Advanced tab.
  4. In the Security folder, enable Warn about invalid site certificates option.
  5. Click OK to apply the changes.