Details
The setting determines the functionality of Safe Browsing.
Disabled (0): Safe Browsing protection applies to all resources
Enabled (1), with a list of 1 or more sites: Means Safe Browsing will trust the domains you designate. It won’t check them for dangerous resources such as phishing, malware, or unwanted software.
The recommended state for this setting is: Disabled (0)
NOTE: Safe Browsing’s download protection service won’t check downloads hosted on these domains, and its password protection service won’t check for password reuse.
Rationale:
Google Safe Browsing will help protect users from a variety of malicious and fraudulent sites, or download dangerous files.
Impact:
None – This is the default behavior.
NOTE: The only real impact is possible user annoyance if the are going to a legitimate site that is falsely considered fraudulent (a rare occurrence). This an be handled by adding the site to the allowlist and/of notifying Google of the false finding.
Solution
To establish the recommended configuration via Group Policy, set the following UI path to Disabled:
Computer ConfigurationPoliciesAdministrative TemplatesGoogleGoogle ChromeSafe Browsing settingsConfigure the list of domains on which Safe Browsing will not trigger warnings
Default Value:
Unset (Same as Disabled, but user can change)
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.