我不认为这是一个好主意，请您的客户完全禁用此配置。请记住，启用和进行此更改不仅适用于您的网站，也适用于其他网站。

I don't think it's a good idea to ask your customers to disable this configuration at all. Remember that enabling and making this change does not only apply to your website but to other websites as well.

默认情况下，在互联网和受限网站区域中禁用它的一个巨大的安全原因，它可能使您的客户容易受到不同类型的CORS（跨源资源共享）攻击

There's a huge security reason why it is disabled in Internet and Restricted Sites zones by default and it could make your customers vulnerable to different types of CORS (Cross Origin Resource Sharing) attacks

不要在浏览器级别上进行更改，请尝试在客户端/服务器端代码或基础设施中启用CORS：

Rather than making changes on the browser level, try to enable CORS in your client/server side code or infrastructure:

http://enable-cors.org/

http://www.html5rocks.com/en/tutorials/cors/