I - Mission Critical Classified
Rules and Groups employed by this XCCDF Profile
-
DTOO328 - Use online translation dictionaries
Group -
Online translation dictionaries must not be used.
This setting allows you to prevent online dictionaries from being used for the translation of text through the Research pane.Rule Medium Severity -
DTOO333 - Word 2 and earlier binary documents
Group -
Word 2 and earlier binary documents and templates must be blocked for open/save.
This setting specifies whether users can open, view, edit, or save Word files saved in the specified format. Enabling block of the specified format mitigates zero-day security attacks (which are at...Rule Medium Severity -
DTOO334 - Word 2000 binary documents and templates
Group -
Word 2000 binary documents and templates must be configured to edit in protected view.
This setting specifies whether users can open, view, edit, or save files saved in the specified format. Enabling the editing of the specified format in protected view, it mitigates zero-day securit...Rule Medium Severity -
DTOO336 - Word 6.0 binary documents and templates
Group -
Word 6.0 binary documents and templates must be configured for block open/save actions.
This setting specifies whether users can open, view, edit, or save Word files saved in the specified format. Enabling block of the specified format mitigates zero-day security attacks (which are at...Rule Medium Severity -
DTOO337 - Word 95 binary documents and templates
Group -
Word 95 binary documents and templates must be configured to edit in protected view.
This setting specifies whether users can open, view, edit, or save files saved in the specified format. Enabling the editing of the specified format in protected view, it mitigates zero-day securit...Rule Medium Severity -
DTOO338 - Word 97 binary documents and templates
Group -
Word 97 binary documents and templates must be configured to edit in protected view.
This setting specifies whether users can open, view, edit, or save files saved in the specified format. Enabling the editing of the specified format in protected view, it mitigates zero-day securit...Rule Medium Severity -
DTOO339 - Word XP binary documents and templates
Group -
Word XP binary documents and templates must be configured to edit in protected view.
This setting specifies whether users can open, view, edit, or save files saved in the specified format. Enabling the editing of the specified format in protected view, it mitigates zero-day securit...Rule Medium Severity -
DTOO426 - Custom XML markup warning
Group -
Word must be configured to warn when opening a document with custom XML markup.
This policy setting specifies how Word behaves when opening a document that contains custom XML markup. Versions of Word that are distributed by Microsoft after January 10, 2010 no longer read the ...Rule Medium Severity -
DTOO600 - Macros must be blocked from running in Office 2013 files from the Internet.
Group -
Macros must be blocked from running in Office 2013 files from the Internet.
This policy setting allows you to block macros from running in Office files that come from the Internet. If you enable this policy setting, macros are blocked from running, even if 'Enable all macr...Rule Medium Severity -
DTOO104 - Disable user name and password
Group -
Disabling of user name and password syntax from being used in URLs must be enforced.
The Uniform Resource Locator (URL) standard allows user authentication to be included in URL strings in the form http://username:password@example.com. A malicious user might use this URL syntax to ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.