II - Mission Support Public
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000047
Group -
Google Data Synchronization must be disabled.
Disables data synchronization in Google Chrome using Google-hosted synchronization services and prevents users from changing this setting. If you enable this setting, users cannot change or overrid...Rule Medium Severity -
SRG-APP-000141
Group -
The URL protocol schema javascript must be disabled.
Each access to a URL is handled by the browser according to the URL's "scheme". The "scheme" of a URL is the section before the ":". The term "protocol" is often mistakenly used for a "scheme". The...Rule Medium Severity -
SRG-APP-000047
Group -
Cloud print sharing must be disabled.
Policy enables Google Chrome to act as a proxy between Google Cloud Print and legacy printers connected to the machine. If this setting is enabled or not configured, users can enable the cloud prin...Rule Medium Severity -
SRG-APP-000516
Group -
Network prediction must be disabled.
Enables network prediction in Google Chrome and prevents users from changing this setting. If you enable or disable this setting, users cannot change or override this setting in Google Chrome. If t...Rule Medium Severity -
SRG-APP-000141
Group -
Metrics reporting to Google must be disabled.
Enables anonymous reporting of usage and crash-related data about Google Chrome to Google and prevents users from changing this setting. If you enable this setting, anonymous reporting of usage and...Rule Medium Severity -
SRG-APP-000141
Group -
Search suggestions must be disabled.
Search suggestion should be disabled as it could lead to searches being conducted that were never intended to be made. Enables search suggestions in Google Chrome's omnibox and prevents users from ...Rule Medium Severity -
SRG-APP-000141
Group -
Importing of saved passwords must be disabled.
Importing of saved passwords should be disabled as it could lead to unencrypted account passwords stored on the system from another browser to be viewed. This policy forces the saved passwords to b...Rule Medium Severity -
SRG-APP-000080
Group -
Incognito mode must be disabled.
Incognito mode allows the user to browse the Internet without recording their browsing history/activity. From a forensics perspective, this is unacceptable. Best practice requires that browser hi...Rule Medium Severity -
SRG-APP-000605
Group -
Online revocation checks must be performed.
By setting this policy to true, the previous behavior is restored and online OCSP/CRL checks will be performed. If the policy is not set, or is set to false, then Chrome will not perform online rev...Rule Medium Severity -
SRG-APP-000206
Group -
Safe Browsing must be enabled.
Allows you to control whether Google Chrome's Safe Browsing feature is enabled and the mode it operates in. If this policy is set to 'NoProtection' (value 0), Safe Browsing is never active. If th...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.