Web-Browser Configuration

The Web-Browser configuration OIT wiki page is designed to provide detailed information, and guidance regarding the configuration and usage of various web-browsers listed.

This is both a description of how-to configure, and a best practices guide for web-browsers. The information provided will enhance user knowledge of web-browsers configuration and operation with the goal of providing secure access to UCI ¹, UCI-OIT ², and UC ³ applications and websites.

¹ UCI — University of California, Irvine.
² UCI-OIT and OIT — Office of Information and Technology.
³ UC — University of California.

• OIT Website home page.
• OIT Security Information
• OIT Safe Computing
• Using University Administrative Information Systems

Please refer to the following external websites for information pertaining to Web-Browser terminology, technologies, and detailed "how-to" instructions.

• Web-Browser history
• A list of past, and present web-browsers
• Mobile device Web-Browsers
• Web-Browser Markup Languages / Document Content
  • HTML
    • HTML description
  • XHTML
  • HTML5
  • XML
  • Cascading Style Sheets ¹
  • SGML
• Web-Browser interpretive languages
  • PHP script language
  • ECMAScript²
    • JavaScript³
    • ActionScript⁴
    • JScript⁵
• Web-Browser Java Applets
  • Java Applet
  • Ruby
  • Jython
• Web-Browser Protocol Definitions
  • HTTP – http://
  • HTTPS – https://
  • FILE – file://hostname/pathname or file:///pathname
  • FTP – ftp://user@hostname/URL — It is recommend that you not use this web-browser protocol as it is insecure.
  • FTPS – ftps://user@hostname/URL

¹ CCS is "Cascading Style Sheets"
² Parent web-browser scripting language of the following languages — JavaScript, ActionScript, and JScript.
³ Ubiquitous and prevalently used of the common web-browser scripting languages.
⁴ Adobe corporation's specialized scripting language.
⁵ Microsoft corporation's Internet Explorer scripting language.

• Enable Pop-Window blocking. ¹
  • Selectivity allow websites to display Pop-Windows only if required for the application to function properly.
• Disable Java. ²
  • Enable Java if the website and/or web application require Java Applets or other Java services.
  • Once access to the website / application is completed then disable Java.
• Enable JavaScript.
  • Selective display JavaScript if you are accessing a websites of unknown trust that are potential security risks.
• Use https when accessing UC, UCI, and UCI-OIT websites whenever possible.
• Always follow UCI and UC security policies — Security Wiki Pages

¹ Web-browser Pop-Window information
² Java Virtual Machine information

• FireFox Web-Browser home web-page

Start FireFox in order to configure the following user defined settings.

• Start FireFox web-browser application.
  • If you have multiple FireFox user profiles defined then configuration of user defined setting is required for each profile defined. ¹
• Open the FireFox options window.
  • Windows and Linux Select Tools --> Options
  • Mac Computers
    • Select the FireFox application window to make the "active" application.
    • Select FireFox --> Preferences OR Command key + ,

The FireFox options ("preferences") window appears, and the following user option sections are displayed.
Windows System – Open FireFox web-browser options window

• General – Configure the following general preferences. – General or Main Preferences Figure
  • Set the "Startup home page display URL" ² value.
  • File download processing, and save to directory location.
  • Plugin management and preferences.
  •  
• Tabs – Configure Tab browsing settings.
  •  
• Content preferences - Web-page content browser settings.
  • Block pop-up windows.
    • Enable blocking pop-up windows, and only allow selected application websites to open pop-up windows.
  • Enable "Load images automatically."
  • Enable JavaScript
  • Enable JavaScript processing for websites, but if there is a doubt regarding the authenticity, functionality or trust-worthiness of a specific website then either disable JavaScript and proceed, or do not visit the website.
    • Note OIT web applications utilize JavaScript in order to function correctly.
  • Disable Java / Do not select: "Enable Java."

• Privacy Preferences.

• Security Preferences figure
  • Enable – "Warn me when sites try to install add-ons."
  • Enable – "Block reported attack sites."
  • Enable – "Block reported web forgeries."
  • Disable – "Remember passwords for sites."
  • Disable – "Use a master password."

• Advanced Settings figure

• 32-bit Mode Switch for the Mac version of FireFox

² URL – Uniform Resource Locator

¹ Creating and managing FireFox user profiles

• Mozilla FireFox Managing Profiles web-page
• Select the operating system type: (a) Windows (b) Linux (c) Mac OS
  • Start the FireFox profile manager.
  • Follow the instructions provided.

• Microsoft Internet Explorer Web-Browser home web-page

Start Internet Explorer in order to configure the following user defined settings.

• Start Internet Explorer web-browser application.
• Select the Tools menu
• Open the Internet Options dialog preference window.
• Select the Security tab
  • User Choice based on UCI, UC and UC website, and web applications accessed
  • [Basic Security setting Medium High|Internet Options dialog preference window.
  • Select the Custom level button to customize the Security Settings
  • Suggested customized Security Settings
    • Suggested Security Setting part 1
    • Suggested Security Setting part 2
    • Suggested Security Setting part 3
    • Suggested Security Setting part 4
    • Suggested Security Setting part 5

• (a) Select the Privacy tab (Default Privacy Settings Active)
  • Set the privacy setting to Medium High
• (b) Select the Privacy tab (Customized Privacy Setting Active)
  • (b) Configure customized privacy settings

• Note the suggested Advanced Option tab settings. Carefully read and understand each of these settings and how they affect website, and web application functionality.
  • Suggested Advanced Option Settings

• IE-9 Compatibility Mode Icon
• IE-9 Features Microsoft Web-page
• IE-9 Compatibility View Feature Web-page
• Using IE-9 Compatibility Mode

• Google Chrome Web-Browser home web-page

Start Google Chrome Web-Browser

• Open the Chrome web-browser option's window by selecting the "tools icon", which is the icon in upper right hand corner following the URL input line that looks like a wrench / spanner.
• Refer to this figure How-to open Chrome's options window
• Select Options and the Google Chrome Options window appears.

• Basics settings – Basic options window
• Personal Stuff settings
  • Ignore setting the Sync options.
  • Select the "Never save passwords" option.
  • Select the "Disable AutoFill" option.

• Section One – Under the Hood or Bonnet advanced Chrome Browser settings

• • Select the Content settings button and configure the following.
  • Cookies Preferences
    • Select "Ask me when a site tries to set cookie data."
    • Select "Block all third-party cookies without exception."
    • Select "Clear cookies and other site data when I close my browser."

• • Image Preferences.
    • Select "Show all images."

• • JavaScript Preferences
  • Select "Allow all sites to run JavaScript"
  • Enable JavaScript processing for websites, but if there is a doubt regarding the authenticity, functionality or trust-worthiness of a specific website then either disable JavaScript and proceed, or do not visit the website.
  • Note OIT web applications utilize JavaScript in order to function correctly.

• • Plug-ins Preferences
  • Select "Allow all sites to use plug-ins."
    • For increased security – Select "Do not allow any sites to use plug-ins." And create a website exceptions list that includes websites that need to run plug-ins to function correctly.

• • Pop-ups window preferences
  • Select "Do not allow any site to show pop-ups." – (i.e. Pop-up Window)

• • Location Tracking Preferences
  • Select "Ask me when a site tries to track my physical location."
  • or Select "Do not allow any site to track my physical location."

• Section Two – Under the Hood or Bonnet advanced Chrome Browser settings

• • Web services options.
    • Enable – Show suggestions for navigation errors.
    • Personal Choice – Use a suggestion service to help complete searches and URLs typed in the address bar. Disable this option if URL string completion interferes with an UCI, UCI OIT or UC applications functionality or if URL completion is not desired.
    • Enable – Use DNS (i.e. Domain Name System or Server pre-fetching to improve page loading performance.
    • Enable – Enable phishing and malware protection.
    • Disable – Sending usage statistics and crash reports to Google.

• • Network
    • Change Proxy Settings – In general there is no need to configure the proxy settings.

• • Translate web-pages.
    • Personal Choice – Offer to translate web-pages.

• • Downloads
    • Enable – Ask where to save each file before downloading.

• • Web Content – Configure web-browser font and language settings.

• • Security
    • As needed – Select trusted SSL certificates – Manage certificates.
    • Computer-wide SSL settings – Enable "Check for server certificate revocation."

• Apple Safari Web-Browser home web-page

Start Apple's Safari Web-Browser

• Open Safari's web-browser preferences configuration dialog window.
  • Configure the General Preference settings.
    • Set default web-browser.
    • Set default search engine.
    • Set "New windows open with" value.
    • Set "New tabs open with" website value.
    • Set the default "Home page" url value.
    • Set "Remove history items" value.
    • Select the "Alway prompt before downloading" file check-box.
    • Set the "Remove download list items" value.
  • Configure the Appearance Preference settings.
  • Configure the Bookmarks Preference settings.
  • Configure the Tabs Preference settings.
  • Configure the RSS Preference settings.
  • Configure the AutoFill Preferences to the following recommend settings.
    • Disable / un-check the "Using info_rmation_ from from my Address Book card" check-box.
    • Disable / un-checl the "User names and passwords" check-box.
    • Disable / un-check the "Other forms". check-box.
  • Configure the Security Preference settings.
    • Select the Fraudulent sites – "Warn when visiting a fraudulent website" check-box.

    • Location services setting note

      If selected the Safari web-browser provides location information (e.g. Computer IP address) to websites that request it.

    • User Choice – Location services – "Allow websites to ask for location information".
    • Web content – "Enable plug-ins" setting. If the check-box is selected then plug-in applications will run. Otherwise, web-browser plug-in applications will not run / operate.
    • It is best to only enable / select the "Enable Java" check-box if and when you need to use a web-application and/or visit a website that requires running Java Applets; otherwise, it is recommend to disable the Java virtual machine for Safari.
    • In most cases enable, select the check-box for, the "Enable JavaScript" feature to allow Safari to run JavaScripts for websites, and web applications. – Disable if there is a potential security using a web-application and/or visiting a questionable website.

    • Cookie configuration note.

      Do not select the "Never" value form the list of Accept cookies values because UC, UCI, and UCI-OIT web-applications will fail to function properly.

    • It is recommend to set the Accept cookies value equal to "Only from sites I visit".
    • Select the "Ask before sending a non-secure form to a secure website" check-box.
  • Configure the Advanced Preference settings.