Microsoft Office System 2013 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Inclusion of document properties for PDF and XPS output must be disallowed.
<VulnDiscussion>If the Microsoft Save as PDF or XPS Add-in for Microsoft Office Programs is installed, document properties are saved as metad...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Blogging entries created from inside Office products must be configured for SharePoint only.
<VulnDiscussion>The blogging feature in Office products enables users to compose blog entries and post them to their blogs directly from Offi...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
The Enable Updates and Disable Updates options in the UI must be hidden from users.
<VulnDiscussion>This policy setting allows the user interface (UI) options to enable or disable Office automatic updates to be hidden from us...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
When using the Office Feedback tool, the ability to include a screenshot must be disabled.
<VulnDiscussion>The "Office Feedback" tool, also called "Send-a-Smile", allows a user to click on an icon and send feedback to Microsoft. The...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
The ability to run unsecure Office apps must be disabled.
<VulnDiscussion>Unsecure apps for Office, which are apps that have web page or catalog locations that are not SSL-secured (https://), and/or ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.