Skip to content
Log In

III - Administrative Public

Rules and Groups employed by this XCCDF Profile

  • InfoPath must be enforced to not use email forms from the Intranet security zone.

    InfoPath email forms can be designed by an internal attacker and sent over the local intranet, and users might fill out such forms and provide sensitive information to the attacker. By default, for...
    Rule Medium Severity
    Show

  • DTOO295 - InfoPath e-mail forms in Outlook

    Group
    Show

  • InfoPath email forms in Outlook must be disallowed.

    Attackers can send users InfoPath email forms in an attempt to gain access to confidential information. Depending on the level of trust of the forms, it might also be possible to gain access to oth...
    Rule Medium Severity
    Show

  • DTOO296 - Managed code from the Internet

    Group
    Show

  • Disabling opening forms with managed code from the Internet security zone must be configured.

    When InfoPath solutions are opened locally, the location of the form is checked so that updates to the form can be downloaded. If a user saves a form locally from a location on the Internet and the...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules