Microsoft Excel 2010
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Open/Save actions for Dif and Sylk files must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Open/Save actions for Excel 2 macrosheets and add-in files must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Open/Save actions for Excel 2 worksheets must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Open/Save actions for Excel 3 macrosheets and add-in files must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Open/Save actions for Excel 3 worksheets must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Open/Save actions for Excel 4 macrosheets and add-in files must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Open/Save actions for Excel 4 workbooks must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Open/Save actions for Excel 4 worksheets must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Actions for Excel 95 workbooks must be configured to edit in protected view.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Actions for Excel 95-97 workbooks and templates must be configured to edit in protected view.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Medium Severity -
Blocking as default file block opening behavior must be enforced.
Users can open, view, or edit a large number of file types in Excel 2010. Some file types are safer than others, as some could allow malicious code to become active on user computers or the networ...Rule Medium Severity -
Open/Save actions for Web pages and Excel 2003 XML spreadsheets must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title. If enabling this policy setting, specify whether users can...Rule Low Severity -
Files from the Internet zone must be opened in Protected View.
This policy setting allows for determining if files downloaded from the Internet zone open in Protected View. If enabling this policy setting, files downloaded from the Internet zone do not open in...Rule Medium Severity -
Files in unsafe locations must be opened in Protected View.
This policy setting determines if files located in unsafe locations will open in Protected View. If unsafe locations have not been specified, only the "Downloaded Program Files" and "Temporary Inte...Rule Medium Severity -
Configuration for file validation must be enforced.
Office Binary Documents (97-2003) are checked to see if they conform against the file format schema before they are opened.Rule Medium Severity -
DTOO122 - dBase III / IV files
Group -
Open/Save actions for dBase III / IV files must be blocked.
This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title.Rule Medium Severity -
DTOO112 - Dif and Sylk files
Group -
DTOO104 - Disable user name and password
Group -
Disabling of user name and password syntax from being used in URLs must be enforced.
The Uniform Resource Locator (URL) standard allows user authentication to be included in URL strings in the form http://username:password@example.com. A malicious user might use this URL syntax to ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.