Details

This policy setting allows you to manage whether a user’s browser can be redirected to another Web page if the author of the Web page uses the Meta Refresh setting (tag) to redirect browsers to another Web page.

If you enable this policy setting, a user’s browser that loads a page containing an active Meta Refresh setting can be redirected to another Web page.

If you disable this policy setting, a user’s browser that loads a page containing an active Meta Refresh setting cannot be redirected to another Web page.

If you do not configure this policy setting, a user’s browser that loads a page containing an active Meta Refresh setting cannot be redirected to another Web page.

Solution

Policy Path: Windows ComponentsInternet ExplorerInternet Control PanelSecurity PageRestricted Sites Zone
Policy Setting Name: Allow META REFRESH

Supportive Information

The following resource is also helpful.

• https://blogs.technet.microsoft.com/secguide/2015/11/13/security-baseline-for-windows-10-build-10240-final/

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.

References

• 800-53|CM-6b.

Source

• Tenable.com/audits