III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
Explorer Data Execution Prevention must be enabled.
Data Execution Prevention (DEP) provides additional protection by performing checks on memory to help prevent malicious code from running. This setting will prevent Data Execution Prevention from b...Rule Medium Severity -
SRG-OS-000420-GPOS-00186
Group -
File Explorer heap termination on corruption must be disabled.
Legacy plug-in applications may continue to function when a File Explorer session has become corrupt. Disabling this feature will prevent this.Rule Low Severity -
SRG-OS-000480-GPOS-00227
Group -
File Explorer shell protocol must run in protected mode.
The shell protocol will limit the set of folders applications can open when run in protected mode. Restricting files an application can open, to a limited set of folders, increases the security of ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules