Adobe - Flash Player : Settings Manager (original) (raw)

Global Security Settings panel

Note: The Settings Manager that you see above is not an image; it is the actual Settings Manager itself. Click the tabs to see different panels, and click the options in the panels to change your Adobe Flash Player settings.

If you are a designer or developer creating applications for Flash Player, see Global security settings for content creators instead.

Use the Global Security Settings panel to specify if SWF or FLV content that uses older security rules can access the Internet. (For information about why you may need to do this, see What are security settings?) To help you decide if it is safe to allow the older security rules to be used, ask yourself: Did I originally download this content myself from a website that I trust? Is the SWF or FLV content trying to communicate with a website that I trust? The website with which the SWF or FLV content wants to communicate is listed in the pop-up dialog that appears when the SWF or FLV content first tries to communicate with the website.

Your options are as follows:

• You can set Flash Player to always ask your permission before letting SWF or FLV content use older security rules; always allow SWF or FLV content to use older security rules; or always deny SWF or FLV content the right to use older security rules. These options, at the top of the panel, apply to both SWF or FLV content that you use on the Web and that is stored locally on your computer. Read more about Online and local content that uses the older security rules, below.
• (Flash Player 8 and later) For a finer level of control, you can let specific SWF or FLV content on your computer use older security rules to access any Internet site it wants. This option, at the bottom of the panel, applies only to SWF or FLV content that is stored locally on your computer, not accessed from a website. Read about SWF or FLV content stored on your computer (Flash Player 8 and later).

If you do not allow SWF or FLV content to use the older security rules, the content might or might not function as intended. If you change your mind about these settings, you can always return to the Global Security Settings panel and change the settings.

For an overview of issues relating to global security settings, see What are security settings? in the discussion of the Settings Manager.

Online and local content that uses the older security rules

Some SWF or FLV content on websites or on your local computer uses older security rules to access information from other sites or communicate with the Internet. For example, you might be shopping at shoes.companyA.com. You want to add a pair of sandals to your shopping cart, and the sandals' price is on another site, at sandals.companyA.com. In this example, the first site tries to access the second, using the older security rules. Or, SWF or FLV content stored locally on your computer might try to communicate with the Internet. When the content uses older security rules and tries to perform these operations, Flash Player asks your permission. You can set the permission so that it affects all SWF or FLV content using the older system of security:

• If you want Flash Player to always ask your permission before using the older security rules, select Always Ask My Permission. Selecting this option allows you to decide, on a case-by-case basis, if the SWF or FLV content can be trusted or not. (A trusted website is a well-known site that you recognize and trust.) When SWF or FLV content tries to use the older security rules, you will see the security pop-up question. At that point, you can allow the SWF or FLV content to use the older security rules or deny it the right to use the older security rules.
• If you want to always allow SWF or FLV content use the older security rules, select Always Allow Access. Selecting this option means you are telling Flash Player that you trust all SWF or FLV content and don't want to be asked about this again. You will not see the security pop-up question again.
  This option is convenient but might also allow sharing of information, such as personal information that you have provided to one site, between sites.
• If you don't want to allow SWF or FLV content to use the older security rules, select Always Deny Access. Selecting this option means you do not trust any SWF or FLV content that uses the older system of security. You won't see the security pop-up question again.
  Because SWF or FLV content will not be allowed to use the older system of security to access information from other sites, such SWF or FLV content might not function as intended.

SWF or FLV content stored on your computer (Flash Player 8 and later)

Some SWF or FLV content that you download to your computer might try to use older security rules to communicate with the Internet. For example, you might enter data in an expense tracking application running in Flash Player that you use offline, then that information is sent to a company website for processing. In another example, a help system running in Flash Player installed on your computer may contact the Internet for updated content.

You can specify what SWF or FLV content on your computer may always use the older security rules by adding the location of the content to the Security panel. After you add a location on your computer to the Security panel, content in that location is trusted. Flash Player won't ask you for permission and will be always allowed to use the older security rules, even if Always Deny is selected in the Security panel. The Always Trust Files in These Locations list overrides the options in the Settings panel. That is, if you select to always deny local and web content the right to use the older security rules, the local files in your trusted list are always allowed to use the older rules.

The Always trust files list at the bottom of the panel applies specifically to SWF or FLV content that you have downloaded to your computer, not content that you use while visiting a website.

(Flash Player 8 and later) To specify that SWF or FLV content on your computer may use the older security rules to communicate with the Internet:

1. In the Settings Manager Global Security Settings panel, above, click the pop-up menu and select Add Location.
   The Add Location box opens. If you arrived at the Settings Manager by clicking the Settings button in a dialog box, the Add Location box contains a path that looks something like C:\directoryname_\_filename.swf or /Users/directoryname/filename.swf; this path tells you which file tried to communicate with the Internet and was stopped by Flash Player security. If the path contains the content that you want to let communicate with the Internet, copy and paste the path into the Trust this location box. Or, click one of the Browse buttons and find the content yourself.
   You can add an individual file or an entire directory. If you add an entire directory, all the files and subdirectories in that directory are trusted. Some SWF or FLV content consists of multiple related files, and you might need to trust the entire directory where all the related files are located. In general, avoid trusting top-level directories.
2. Click Confirm.
   The location is added to the Security Settings panel. Locations listed are always allowed to use the older security rules, even if the Always Deny or Always Ask options at the top of the Security panel are selected.
   After you add trusted locations, you must restart the local SWF or FLV content by either refreshing the browser or restarting the player.