Microsoft Office System 2010 STIG
Rules, Groups, and Values defined within the XCCDF Benchmark
-
DTOO194 - Hyperlink warnings for Office
<GroupDescription></GroupDescription>Group -
Hyperlink warnings for Office must be configured for use.
<VulnDiscussion>Unsafe hyperlinks are links that might pose a security risk if users click them. Clicking an unsafe link could compromise the...Rule Medium Severity -
DTOO206 - Incl. Doc. properties for PDF and XPS
<GroupDescription></GroupDescription>Group -
Inclusion of document properties for PDF and XPS output must be disallowed.
<VulnDiscussion>If the Microsoft Save as PDF or XPS Add-in for Microsoft Office Programs add-in is installed, document properties are saved a...Rule Medium Severity -
DTOO198 - Internet Fax Feature
<GroupDescription></GroupDescription>Group -
The Internet Fax Feature must be disabled.
<VulnDiscussion>Excel, PowerPoint, and Word users can use the Internet Fax feature to send documents to fax recipients through an Internet fa...Rule Medium Severity -
DTOO202 - Microsoft Passport Service
<GroupDescription></GroupDescription>Group -
Microsoft passport Service for content must be disallowed.
<VulnDiscussion>This controls whether users can open protected content created with a Windows Live ID (formerly Microsoft .NET Passport) auth...Rule Medium Severity -
DTOO183 - Opt-In Wizard on first run use
<GroupDescription></GroupDescription>Group -
The Opt-In Wizard must be disabled.
<VulnDiscussion>The Opt-in Wizard displays the first time users run a 2010 Microsoft Office application, which allows them to opt into Intern...Rule Medium Severity -
DTOO195 - Disable Password to Open UI
<GroupDescription></GroupDescription>Group -
Passwords for secured documents must be enforced.
<VulnDiscussion>If 2010 Office users add passwords to documents, other users can be prevented from opening the documents. This capability can...Rule Medium Severity -
DTOO197 - Document Manifests
<GroupDescription></GroupDescription>Group -
Automation Security to enforce macro level security in Office documents must be configured.
<VulnDiscussion>When a separate program is used to launch Microsoft Office Excel, PowerPoint, or Word programmatically, any macros can run in...Rule Medium Severity -
Smart Documents use of Manifests in Office must be disallowed.
<VulnDiscussion>An XML expansion pack is the group of files that constitutes a Smart Document in Excel and Word. You package one or more comp...Rule Medium Severity -
DTOO208 - Office client polling from Office Server
<GroupDescription></GroupDescription>Group -
Office client polling of Sharepoint servers published links must be disabled.
<VulnDiscussion>Users of Office applications can see and use links to Microsoft Office SharePoint Server sites from those applications. Admin...Rule Medium Severity -
DTOO201 - Connection permissions verification
<GroupDescription></GroupDescription>Group -
Connection verification of permissions must be enforced.
<VulnDiscussion>Users are not required to connect to the network to verify permissions. If users do not need their licenses confirmed when at...Rule Medium Severity -
DTOO185 - Do not receive Automatic small updates
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.