Home > Internet Explorer > Internet Explorer Cannot Download Default.aspx From Update.microsoft.com

Internet Explorer Cannot Download Default.aspx From Update.microsoft.com

Reply EricLaw [MSFT] says: June 25, 2012 at 9:56 am @Jon: Yup, that's exactly the same culprit. And on top of that, if that's a ‘security feature' why this misleading error message?! If you click on the link in an email it still gives the error. This is IE8 on WinXP. navigate here

I got my file working over SSL now. HTTPS provides point to point encryption, but at the endpoints it's in the clear. but when download from https://something in WinXP and windows7 (IE7)client. Reply Charli says: November 11, 2012 at 9:17 am Having much the same problem: Using IE9-x64 on Windows 7 Ultimate.

Apropos banks requesting security features, what about "X-Force-TLS"? says: October 5, 2009 at 8:01 am The setting makes complete sense on shared machines. This worked for JSP , Tomcat, HTTPS. Does only apply to files with "Content-Disposition" response headers?

Perhaps I'm too paranoid but I always make sure that setting is checked. As a comment notes below, the behavior is slightly different for direct navigation (e.g. IE9 should be able to successfully download a file regardless of HTTPS orCache-Control headers unless you have the "Do not save encrypted pages to disk" option set. Is there a particular threat we're protecting against?

Please contact me using the link at the top-right to let us investigate. Reply Iain says: January 6, 2011 at 8:41 am Great post, though I'm still having problems. Reply Don Pratt says: February 15, 2010 at 9:15 am I'm running into this on my site but we're using straight HTTP, not HTTPS. a hyperlink navigation (e.g.

I recommend that folks avoid enabling this option, and use the Delete Browser History on Exit feature instead. You were right, that and changing Cache-Control to 'private, max-age=10' did the trick. It is like there is a remapping of the period to an underscore for anything but .htm or .html. [EricLaw]: This is a configuration problem somewhere on your machine. Is there any resolution to this?

Reply Adam Barth says: October 6, 2009 at 1:59 am @WillH: The problem with disabling caching for all HTTPS traffic is that it makes HTTPS slower and more expensive for web check it out Thanks Eric I really appreciate your feedback, I can't find any solution for this online, everything just mentions the Cache-Control: and Pragma: headers that I think I already have set correctly. Generated Thu, 10 Nov 2016 01:18:23 GMT by s_mf18 (squid/3.5.20) {{offlineMessage}} Store Store home Devices Microsoft Surface PCs & tablets Xbox Virtual reality Accessories Windows phone Software Office Windows Additional software What if you want to print something?

Reply Will H. check over here Mine is JSP with tomcat with https… It works fine in fire fox it breaks in IE.. This happens with Groupon when I try to print a voucher for instance. Tags BetterInIE9 caching downloads https networking problems Comments (45) Cancel reply Name * Email * Website Billy Hoffman says: October 3, 2009 at 3:07 pm Can you clarify "downloaded files" a

Enabling caching is not an option as we then get an alternative error "myfile.xls is locked for editing by 'me' Open 'Read-Only', or click 'Notify' to open read-only…" Is there any BTW/OT: I wish I will also find my life's calling where I would be so dedicated that I would reply to blog post comments on Sundays. 🙂 Reply EricLaw [ex-MSFT] says: and signed it, and make cab file, and also signed it. his comment is here STILL cannot save downloads from banks to disk using IE9.

External visitors can access the files fine either via links or by entering the address directly into the browser. I've tried various combinations of: Response.AddHeader "Cache-Control", "private, max-age=15" Response.AddHeader "Pragma", "no-cache" Response.AddHeader "cache-control", "no-store, must-revalidate, private" Response.AddHeader "Cache-Control", "no-store, no-cache" at different code locations. Update Feb. 2011: I've modified the file download logic for IE9.

That means fewer of them will deploy HTTPS and everyone's security suffers to mitigate this marginal threat.

It's something that major customers (especially banks) had asked for, without really understanding what it would mean for the user-experience. If you don't want something cached, send a cache header with that instruction! Reply Huns Warst says: October 4, 2009 at 1:43 pm « That's an incorrect assumption. » Maybe, for when some evil villain is able to read your cache (the one on Can do this with Mozilla.

What browser are you using, and what are the final set of headers? the tomcat add Cache-Control header when the server site is https. Is copy/paste blocked too? weblink After that change, I've used Fiddler to delete the Cache-Control header as directed, but I was still getting an Expires: -1 so also had to delete the pragma header (by entering

Reply EricLaw [ex-MSFT] says: October 5, 2009 at 10:28 am @WillH: Generally speaking, it's never safe to browse private sites on an untrusted PC, because the PC may contain keyloggers or NOT using "do not save encrypted pages". Your cache administrator is webmaster. I've also tried the other variations for Cache-Control: listed on this page and the behavior stays the same.

Additionally, if you include a Pragma: no-cache header, the secure response will not be cached regardless of other headers. Update Oct. 2010: I've conducted some further investigation of this issue, and found that (surprisingly) you CAN specify Cache-Control: no-store, no-cache and the download will work, but if you specify these I've tried amending my .net code, as suggested above, by adding: Response.AddHeader "Cache-Control", "private, max-age=15" but that hasn't solved it.