I - Mission Critical Public
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000210
Group -
The Initialize and script ActiveX controls not marked as safe must be disallowed (Trusted Sites Zone).
ActiveX controls that are not marked safe for scripting should not be executed. Although this is not a complete security measure for a control to be marked safe for scripting, if a control is not m...Rule Medium Severity -
SRG-APP-000141
Group -
Run once selection for running outdated ActiveX controls must be disabled.
This feature keeps ActiveX controls up to date and helps make them safer to use in Internet Explorer. Many ActiveX controls are not automatically updated as new versions are released. It is very im...Rule Medium Severity -
SRG-APP-000141
Group -
Enabling outdated ActiveX controls for Internet Explorer must be blocked.
This feature keeps ActiveX controls up to date and helps make them safer to use in Internet Explorer. Many ActiveX controls are not automatically updated as new versions are released. It is very im...Rule Medium Severity -
SRG-APP-000141
Group -
Use of the Tabular Data Control (TDC) ActiveX control must be disabled for the Internet Zone.
This policy setting determines whether users can run the Tabular Data Control (TDC) ActiveX control, based on security zone. By default, the TDC ActiveX Control is disabled in the Internet and Rest...Rule Medium Severity -
SRG-APP-000209
Group -
The Download signed ActiveX controls property must be disallowed (Restricted Sites zone).
ActiveX controls can contain potentially malicious code and must only be allowed to be downloaded from trusted sites. Signed code is better than unsigned code in that it may be easier to determine ...Rule Medium Severity -
SRG-APP-000141
Group -
Use of the Tabular Data Control (TDC) ActiveX control must be disabled for the Restricted Sites Zone.
This policy setting determines whether users can run the Tabular Data Control (TDC) ActiveX control, based on security zone. By default, the TDC ActiveX Control is disabled in the Internet and Rest...Rule Medium Severity -
SRG-APP-000209
Group -
VBScript must not be allowed to run in Internet Explorer (Internet zone).
This policy setting allows the management of whether VBScript can be run on pages from the specified zone in Internet Explorer. By selecting "Enable" in the drop-down box, VBScript can run without ...Rule Medium Severity -
SRG-APP-000209
Group -
The Download unsigned ActiveX controls property must be disallowed (Restricted Sites zone).
Unsigned code is potentially harmful, especially when coming from an untrusted zone. ActiveX controls can contain potentially malicious code and must only be allowed to be downloaded from trusted s...Rule Medium Severity -
SRG-APP-000209
Group -
VBScript must not be allowed to run in Internet Explorer (Restricted Sites zone).
This policy setting allows the management of whether VBScript can be run on pages from the specified zone in Internet Explorer. By selecting "Enable" in the drop-down box, VBScript can run without ...Rule Medium Severity -
SRG-APP-000266
Group -
Internet Explorer Development Tools Must Be Disabled.
While the risk associated with browser development tools is more related to the proper design of a web application, a risk vector remains within the browser. The developer tools allow end users and...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.