Details
Google Chrome can use the Google Safe Search API to classify URLs as pornographic or not.
The recommended state for this setting is: Enabled with a value of Filter top level sites (but not embedded iframes) for adult content (1)
Rationale:
Allowing search results to present sites that may have malicious content should be prohibited to help ensure users do not accidentally visit sites that are more prone to malicious content including spyware, adware, and viruses.
Impact:
Users search results will be filtered and content such as adult text, videos and images will not be shown.
NOTE: Using Googles Safe Search API may leak information which is typed/pasted by mistake into the omnibox, e.g. passwords, internal webservices, folder structures, etc.
Solution
To establish the recommended configuration via Group Policy, set the following UI path to Enabled: Do not filter sites for adult content:
Computer ConfigurationPoliciesAdministrative TemplatesGoogleGoogle ChromeControl SafeSites adult content filtering.
Default Value:
Unset (Same as Enabled with ‘Do not filter sites for adult content’, but user can change)
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.