Home
Security Hardening
DISA STIG IE 11 V2R1

DISA STIG IE 11 V2R1

DTBI123-IE11 – The Allow META REFRESH property must be disallowed (Restricted Sites zone).
Details It is possible that users will unknowingly be redirected to a site hosting malicious content. ‘Allow META REFRESH’ must...
DTBI126-IE11 – Functionality to drag and drop or copy and paste files must be disallowed (Restricted Sites zone).
Details Content hosted on sites located in the Restricted Sites zone are more likely to contain malicious payloads and therefore...
DTBI128-IE11 – Launching programs and files in IFRAME must be disallowed (Restricted Sites zone).
Details This policy setting allows you to manage whether applications may be run and files may be downloaded from an...
DTBI129-IE11 – Navigating windows and frames across different domains must be disallowed (Restricted Sites zone).
Details Frames navigating across different domains are a security concern, because the user may think they are accessing pages on...
DTBI132-IE11 – Userdata persistence must be disallowed (Restricted Sites zone).
Details Userdata persistence must have a level of protection based upon the site being accessed. This policy setting allows you...
DTBI318-IE11 – Internet Explorer must be set to disallow users to add/delete sites.
Details This setting prevents users from adding sites to various security zones. Users should not be able to add sites...
DTBI319-IE11 – Internet Explorer must be configured to disallow users to change policies.
Details Users who change their Internet Explorer security settings could enable the execution of dangerous types of code from the...
DTBI320-IE11 – Internet Explorer must be configured to use machine settings.
Details Users who change their Internet Explorer security settings could enable the execution of dangerous types of code from the...
DTBI325-IE11 – Security checking features must be enforced.
Details This policy setting turns off the Security Settings Check feature, which checks Internet Explorer security settings to determine when...
DTBI350-IE11 – Software must be disallowed to run or install with invalid signatures.
Details Microsoft ActiveX controls and file downloads often have digital signatures attached that certify the file’s integrity and the identity...

Prev Next

DISA STIG IE 11 V2R1

DTBI123-IE11 – The Allow META REFRESH property must be disallowed (Restricted Sites zone).

DTBI126-IE11 – Functionality to drag and drop or copy and paste files must be disallowed (Restricted Sites zone).

DTBI128-IE11 – Launching programs and files in IFRAME must be disallowed (Restricted Sites zone).

DTBI129-IE11 – Navigating windows and frames across different domains must be disallowed (Restricted Sites zone).

DTBI132-IE11 – Userdata persistence must be disallowed (Restricted Sites zone).

DTBI318-IE11 – Internet Explorer must be set to disallow users to add/delete sites.

DTBI319-IE11 – Internet Explorer must be configured to disallow users to change policies.

DTBI320-IE11 – Internet Explorer must be configured to use machine settings.

DTBI325-IE11 – Security checking features must be enforced.

DTBI350-IE11 – Software must be disallowed to run or install with invalid signatures.