I set the specified 3 registry settings (RunInvalidSig, CheckExe, &
SaveZone), and they had no effect.
Under MKCU\Software\Policies\Microsoft, 'SystemCertificates' was the only
existing key, so 'Internet Explorer\Download' had to be created. Also, only
'Explorer' existed at
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies, so 'Attachments' had
to be created. Should these keys have already existed?
Components "Primitive: CryptUI", "Internet Explorer" and "Windows XP Service
Pack 2 Resource DLL" are all included in the image.
I also included everything needed to support installing IE7 into the image,
built it, then installed IE7. IE7 exhibits the same behavior, again with all
Advanced options set to allow everything and registry values all set to