DTBI038-IE11 – Launching programs and files in IFRAME must be disallowed (Internet zone).
Details This policy setting allows you to manage whether applications may be run and files may be downloaded from an...
- Home
- Security Hardening
- DISA STIG IE 11 V2R1
DISA STIG IE 11 V2R1
DTBI039-IE11 – Navigating windows and frames across different domains must be disallowed (Internet zone).
Details Frames that navigate across different domains are a security concern, because the user may think they are accessing pages...DTBI042-IE11 – Userdata persistence must be disallowed (Internet zone).
Details Userdata persistence must have a level of protection based upon the site being accessed. It is possible for sites...DTBI044-IE11 – Clipboard operations via script must be disallowed (Internet zone).
Details A malicious script could use the clipboard in an undesirable manner, for example, if the user had recently copied...DTBI046-IE11 – Logon options must be configured to prompt (Internet zone).
Details Users could submit credentials to servers operated by malicious individuals who could then attempt to connect to legitimate servers...DTBI061-IE11 – Java permissions must be configured with High Safety (Intranet zone).
Details Java applications could contain malicious code. This policy setting allows you to manage permissions for Java applets. If you...DTBI091-IE11 – Java permissions must be configured with High Safety (Trusted Sites zone).
Details Java applications could contain malicious code. This policy setting allows you to manage permissions for Java applets. If you...DTBI092-IE11 – Anti-Malware programs against ActiveX controls must be run for the Trusted Sites zone.
Details This policy setting determines whether Internet Explorer runs Anti-Malware programs against ActiveX controls, to check if they’re safe to...DTBI112-IE11 – The Download signed ActiveX controls property must be disallowed (Restricted Sites zone).
Details ActiveX controls can contain potentially malicious code and must only be allowed to be downloaded from trusted sites. Signed...DTBI113-IE11 – The Download unsigned ActiveX controls property must be disallowed (Restricted Sites zone).
Details Unsigned code is potentially harmful, especially when coming from an untrusted zone. ActiveX controls can contain potentially malicious code...