Download
| Alert*
oval:gov.nist.USGCB.ie7:def:2039
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:1119 Computer Configuration\Network\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn Off First- Run Opt-In oval:gov.nist.USGCB.ie7:def:1113 This policy setting determines whether users will be prompted for non user-initiated file downloads. Regardless of this setting, users will receive file download dialogs for user-initiated downloads. oval:gov.nist.USGCB.ie7:def:1234 This policy setting allows you to manage restrictions on script-initiated pop-up windows and windows that include the title and status bars. If you enable this policy setting, Windows Restrictions security will not apply in this zone. oval:gov.nist.USGCB.ie7:def:9998 Computer-wide, rather than per-user, assignment of sites to zones for Internet Explorer should be enabled or disabled as appropriate. oval:gov.nist.USGCB.ie7:def:62199 The "Turn on Protected Mode" setting should be configured correctly for the Restricted Sites Zone. oval:gov.nist.USGCB.ie7:def:1019 This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy, users can download signed controls without user intervention. oval:gov.nist.USGCB.ie7:def:1379 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:1322 This policy setting prevents performance of the First Run Customize settings ability and controls what the user will see when they launch Internet Explorer for the first time after installation of Internet Explorer. oval:gov.nist.USGCB.ie7:def:31098 This policy setting controls whether a page may control embedded WebBrowser Controls via script oval:gov.nist.USGCB.ie7:def:31099 This policy setting controls whether or not the local path information will be sent when uploading a file via a HTML form. oval:gov.nist.USGCB.ie7:def:1699 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:1218 This policy setting allows you to manage whether a user's browser can be redirected to another Web page if the author of the Web page uses the Meta Refresh setting (tag) to redirect browsers to another Web page. oval:gov.nist.USGCB.ie7:def:1219 This policy setting allows you to manage whether Web sites from less privileged zones, such as Restricted Sites, can navigate into this zone. oval:gov.nist.USGCB.ie7:def:1694 The Do not allow users to enable or disable add-ons policy setting allows you to manage whether users have the ability to allow or deny add-ons through Manage Add-ons. oval:gov.nist.USGCB.ie7:def:31061 This policy setting allows you to manage whether scriptlets can be allowed. If you enable this policy setting, users will be able to run scriptlets. If you disable this policy setting, users will not be able to run scriptlets. oval:gov.nist.USGCB.ie7:def:1108 This policy setting allows you to manage the preservation of information in the browser's history, in favorites, in an XML store, or directly within a Web page saved to disk. oval:gov.nist.USGCB.ie7:def:1229 This policy setting allows you to manage the opening of sub-frames and access of applications across different domains. If you enable this policy setting, users can open sub-frames from other domains and access applications from other domains. oval:gov.nist.USGCB.ie7:def:1109 This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting, HTML fonts can be downloaded automatically. oval:gov.nist.USGCB.ie7:def:1100 This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If you enable this policy setting, most unwanted pop-up windows are prevented from appearing. oval:gov.nist.USGCB.ie7:def:1753 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:1199 This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy, users can download signed controls without user intervention. oval:gov.nist.USGCB.ie7:def:1083 This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting, users can drag files or copy and paste files from this zone automatically. oval:gov.nist.USGCB.ie7:def:1404 The Security Zones: Do not allow users to change policies setting prevents users from changing security zone settings. A security zone is a group of Web sites with the same security level. oval:gov.nist.USGCB.ie7:def:1883 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:1400 The Security Zones: Do not allow users to add/delete sites setting prevents users from adding or removing sites from security zones. A security zone is a group of Web sites with the same security level. oval:gov.nist.USGCB.ie7:def:1419 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:31024 This policy setting allows you to manage whether script is allowed to update the status bar within the zone. If you enable this policy setting, script is allowed to update the status bar. oval:gov.nist.USGCB.ie7:def:31035 This policy setting allows you to manage whether .NET Framework components that are not signed with Authenticode can be executed from Internet Explorer. oval:gov.nist.USGCB.ie7:def:31036 This policy setting allows you to manage whether .NET Framework components that are signed with Authenticode can be executed from Internet Explorer. oval:gov.nist.USGCB.ie7:def:1422 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:1153 This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. oval:gov.nist.USGCB.ie7:def:1277 Applies security zone information to all users of the same computer. A security zone is a group of Web sites with the same security level. If you enable this policy, changes that the user makes to a security zone will apply to all users of that computer. oval:gov.nist.USGCB.ie7:def:1040 This policy setting allows you to manage ActiveX controls not marked as safe. If you enable this policy setting, ActiveX controls are run, loaded with parameters, and scripted without setting object safety for untrusted data or scripts. oval:gov.nist.USGCB.ie7:def:1285 This setting specifies to automatically detect the proxy server settings used to connect to the Internet and customize Internet Explorer. oval:gov.nist.USGCB.ie7:def:1043 This policy setting allows you to manage whether scriptlets can be allowed. If you enable this policy setting, users will be able to run scriptlets. If you disable this policy setting, users will not be able to run scriptlets. oval:gov.nist.USGCB.ie7:def:1166 This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. oval:gov.nist.USGCB.ie7:def:1171 This policy setting prevents users from participating in the Customer Experience Improvement Program (CEIP). oval:gov.nist.USGCB.ie7:def:31105 This policy setting controls whether or not the 'Open File - Security Warning' prompt is shown when launching executables or other unsafe files. oval:gov.nist.USGCB.ie7:def:1174 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:31108 The Restrict ActiveX Install\Internet Explorer Processes policy setting enables blocking of ActiveX control installation prompts for Internet Explorer processes. oval:gov.nist.USGCB.ie7:def:1179 This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If you enable this policy setting, most unwanted pop-up windows are prevented from appearing. oval:gov.nist.USGCB.ie7:def:31103 This policy setting controls whether a page may control embedded WebBrowser Controls via script oval:gov.nist.USGCB.ie7:def:31104 This policy setting controls whether or not the local path information will be sent when uploading a file via a HTML form. oval:gov.nist.USGCB.ie7:def:31100 This policy setting controls whether or not the 'Open File - Security Warning' prompt is shown when launching executables or other unsafe files. oval:gov.nist.USGCB.ie7:def:1183 This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. oval:gov.nist.USGCB.ie7:def:1181 The Make proxy settings per - machine (rather than per-user) setting ensures proxy settings for all users of the same computer are the same. oval:gov.nist.USGCB.ie7:def:1986 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:1187 This setting specifies the update check interval. The default value is 30 days. If you enable this policy setting, the user will not be able to configure the update check interval. You have to specify the update check interval. oval:gov.nist.USGCB.ie7:def:1184 This policy setting allows you to manage whether file downloads are permitted from the zone. This option is determined by the zone of the page with the link causing the download, not the zone from which the file is delivered. oval:gov.nist.USGCB.ie7:def:24599 The "Download signed ActiveX controls" setting should be configured correctly for the Locked-Down Internet Zone. oval:gov.nist.USGCB.ie7:def:400 This policy setting allows you to manage whether users receive a dialog requesting permission for active content on a CD to run. If you enable this policy setting, active content on a CD will run without a prompt. oval:gov.nist.USGCB.ie7:def:884 Internet Explorer uses Multipurpose Internet Mail Extensions (MIME) data to determine file handling procedures for files received through a Web server. This policy setting determines whether Internet Explorer requires that all file-type information provided by Web servers be consistent. For example, ... oval:gov.nist.USGCB.ie7:def:524 This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting, HTML fonts can be downloaded automatically. oval:gov.nist.USGCB.ie7:def:757 This setting specifies the number of days that Internet Explorer keeps track of the pages viewed in the History List. The delete Browsing History option can be accessed using Tools, Internet Options and General tab. oval:gov.nist.USGCB.ie7:def:620 Internet Explorer places restrictions on each Web page it opens that are dependent upon the location of the Web page (such as Internet zone, Intranet zone, or Local Machine zone). oval:gov.nist.USGCB.ie7:def:621 Computer Configuration\Network\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Turn Off First- Run Opt-In oval:gov.nist.USGCB.ie7:def:501 This policy setting allows the user to enable a phishing filter that will warn if the Web site being visited is known for fraudulent attempts to gather personal information through "phishing." oval:gov.nist.USGCB.ie7:def:506 This policy setting allows you to manage whether scripts can perform a clipboard operation (for example, cut, copy, and paste) in a specified region. If you enable this policy setting, a script can perform a clipboard operation. oval:gov.nist.USGCB.ie7:def:617 The MK Protocol Security Restriction policy setting reduces attack surface area by blocking the seldom used MK protocol. Some older Web applications use the MK protocol to retrieve information from compressed files. oval:gov.nist.USGCB.ie7:def:611 This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone. oval:gov.nist.USGCB.ie7:def:612 This policy setting allows you to manage the opening of sub-frames and access of applications across different domains. If you enable this policy setting, users can open sub-frames from other domains and access applications from other domains. oval:gov.nist.USGCB.ie7:def:172 This policy setting allows you to manage whether Internet Explorer will check revocation status of servers' certificates. oval:gov.nist.USGCB.ie7:def:293 This policy setting allows you to manage whether script code on pages in the zone is run. If you enable this policy setting, script code on pages in the zone can run automatically. oval:gov.nist.USGCB.ie7:def:290 This policy setting allows you to manage software channel permissions. If you enable this policy setting, you can choose the following options from the drop-down box. oval:gov.nist.USGCB.ie7:def:326 This policy setting allows you to manage settings for logon options. If you enable this policy setting, you can choose from the following logon options. oval:gov.nist.USGCB.ie7:def:329 This policy setting allows you to manage whether .NET Framework components that are not signed with Authenticode can be executed from Internet Explorer. oval:gov.nist.USGCB.ie7:def:680 Microsoft ActiveX controls and file downloads often have digital signatures attached that vouch for both the file's integrity and the identity of the signer (creator) of the software. Such signatures help ensure that unmodified. oval:gov.nist.USGCB.ie7:def:320 In certain circumstances, Web sites can initiate file download prompts without interaction from users. This technique can allow Web sites to put unauthorized files on users' hard drives if they click the wrong button and accept the download. oval:gov.nist.USGCB.ie7:def:314 This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. oval:gov.nist.USGCB.ie7:def:559 This policy setting controls whether URLs representing UNCs are mapped into the local Intranet security zone. If you enable this policy setting, all network paths are mapped into the Intranet Zone. oval:gov.nist.USGCB.ie7:def:317 MIME sniffing is the process of examining the content of a MIME file to determine its context - whether it is a data file, an executable file, or some other type of file. oval:gov.nist.USGCB.ie7:def:674 This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO). oval:gov.nist.USGCB.ie7:def:302 This policy setting allows you to manage software channel permissions. If you enable this policy setting, you can choose the following options from the drop-down box. oval:gov.nist.USGCB.ie7:def:6110 The "Turn off downloading of enclosures" setting should be configured correctly. oval:gov.nist.USGCB.ie7:def:300 This policy setting allows you to manage the preservation of information in the browser's history, in favorites, in an XML store, or directly within a Web page saved to disk. oval:gov.nist.USGCB.ie7:def:655 Internet Explorer treats as fatal any Secure Socket Layer/Transport Layer Security (SSL/TLS) certificate errors that interrupt navigation (such as "expired," "revoked," or "name mismatch" errors). oval:gov.nist.USGCB.ie7:def:656 This policy setting allows you to manage whether Internet Explorer checks the Internet for newer versions. oval:gov.nist.USGCB.ie7:def:418 This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. oval:gov.nist.USGCB.ie7:def:652 This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO). oval:gov.nist.USGCB.ie7:def:247 This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. oval:gov.nist.USGCB.ie7:def:249 This policy setting allows you to manage whether scripts can perform a clipboard operation (for example, cut, copy, and paste) in a specified region. If you enable this policy setting, a script can perform a clipboard operation. oval:gov.nist.USGCB.ie7:def:240 These are eXtensible Application Markup Language (XAML) files. XAML is an XML-based declarative markup language commonly used for creating rich user interfaces and graphics that leverage the Windows Presentation Foundation. oval:gov.nist.USGCB.ie7:def:242 These are browser-hosted, ClickOnce-deployed applications built using WinFX. These applications execute in a security sandbox and harness the power of the Windows Presentation Foundation platform for the Web. oval:gov.nist.USGCB.ie7:def:365 This policy setting allows you to manage dynamic binary and script behaviors: components that encapsulate specific functionality for HTML elements to which they were attached. If you enable this policy setting, binary and script behaviors are available. oval:gov.nist.USGCB.ie7:def:487 The Turn off Crash Detection policy setting allows you to manage the crash detection feature of add-on management in Internet Explorer. If you enable this policy setting, a crash in Internet Explorer will be similar to one on a computer running Windows XP. oval:gov.nist.USGCB.ie7:def:245 This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. oval:gov.nist.USGCB.ie7:def:916 This policy setting turns off the Security Settings Check feature, which checks Internet Explorer security settings to determine when the settings put Internet Explorer at risk. oval:gov.nist.USGCB.ie7:def:110 This policy setting allows you to manage whether Internet Explorer will launch COM add-ons known as browser helper objects, such as toolbars. oval:gov.nist.USGCB.ie7:def:589 This policy setting allows you to manage restrictions on script-initiated pop-up windows and windows that include the title and status bars. If you enable this policy setting, Windows Restrictions security will not apply in this zone. oval:gov.nist.USGCB.ie7:def:226 This policy setting allows you to manage whether script is allowed to update the status bar within the zone. If you enable this policy setting, script is allowed to update the status bar. oval:gov.nist.USGCB.ie7:def:580 These are browser-hosted, ClickOnce-deployed applications built using WinFX. These applications execute in a security sandbox and harness the power of the Windows Presentation Foundation platform for the Web. oval:gov.nist.USGCB.ie7:def:583 This policy setting prevents users from using the Reset Internet Explorer Settings feature. Reset Internet Explorer Settings will allow the users to reset all settings changed since install, delete browsing history and disable add-ons that are not preapproved. oval:gov.nist.USGCB.ie7:def:223 This policy setting allows you to manage whether users can install Active Desktop items from this zone. The settings for this option are: If you enable this policy setting, users can install desktop items from this zone automatically. oval:gov.nist.USGCB.ie7:def:465 Internet Explorer allows scripts to programmatically open, resize, and reposition various types of windows. Often, disreputable Web sites will resize windows to either hide other windows or force you to interact with a window that contains malicious code. oval:gov.nist.USGCB.ie7:def:458 This policy setting prevents users from performing the "Delete Browsing History" action in Internet Explorer. If you enable this policy setting, users cannot perform the "Delete Browsing History" action in Internet Options for Internet Explorer 7. oval:gov.nist.USGCB.ie7:def:338 Computer Configuration\Network\Internet Explorer\Internet Control Panel\Security Features\Enable Native XMLHttp Support oval:gov.nist.USGCB.ie7:def:691 This policy setting allows you to manage settings for logon options. If you enable this policy setting, you can choose from the following logon options. oval:gov.nist.USGCB.ie7:def:571 This policy setting allows you to manage whether ActiveX controls and plug-ins can be run on pages from the specified zone. If you enable this policy setting, controls and plug-ins can run without user intervention. oval:gov.nist.USGCB.ie7:def:602 This policy setting allows you to manage whether an ActiveX control marked safe for scripting can interact with a script. If you enable this policy setting, script interaction can occur automatically without user intervention. oval:gov.nist.USGCB.ie7:def:280 This policy setting allows you to manage whether applets are exposed to scripts within the zone. If you enable this policy setting, scripts can access applets automatically without user intervention. oval:gov.nist.USGCB.ie7:def:953 This policy setting allows you to manage MIME sniffing for file promotion from one type to another based on a MIME sniff. A MIME sniff is the recognition by Internet Explorer of the file type based on a bit signature. oval:gov.nist.USGCB.ie7:def:715 This policy setting allows checking for updates for Internet Explorer from the specified URL, included by default in Internet Explorer. oval:gov.nist.USGCB.ie7:def:273 This policy setting allows you to manage ActiveX controls not marked as safe. If you enable this policy setting, ActiveX controls are run, loaded with parameters, and scripted without setting object safety for untrusted data or scripts. oval:gov.nist.USGCB.ie7:def:395 This policy setting allows you to manage whether Internet Explorer checks for digital signatures (which identifies the publisher of signed software and verifies it hasn't been modified or tampered with) on user computers before downloading executable programs. oval:gov.nist.USGCB.ie7:def:274 This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone. oval:gov.nist.USGCB.ie7:def:275 These are eXtensible Application Markup Language (XAML) files. XAML is an XML-based declarative markup language commonly used for creating rich user interfaces and graphics that leverage the Windows Presentation Foundation. oval:gov.nist.USGCB.ie7:def:276 This policy setting allows you to manage whether .NET Framework components that are signed with Authenticode can be executed from Internet Explorer. oval:gov.nist.USGCB.ie7:def:391 This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful, especially when coming from an untrusted zone. oval:gov.nist.USGCB.ie7:def:706 This policy setting allows you to manage MIME sniffing for file promotion from one type to another based on a MIME sniff. A MIME sniff is the recognition by Internet Explorer of the file type based on a bit signature. oval:gov.nist.USGCB.ie7:def:949 This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful, especially when coming from an untrusted zone. oval:gov.nist.USGCB.ie7:def:824 This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually. oval:gov.nist.USGCB.ie7:def:383 This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. oval:gov.nist.USGCB.ie7:def:265 This policy setting allows you to manage whether Web sites from less privileged zones, such as Restricted Sites, can navigate into this zone. oval:gov.nist.USGCB.ie7:def:111999 The "Turn on Protected Mode" setting should be configured correctly for the Internet Zone. oval:gov.nist.USGCB.ie7:def:378 This policy setting allows you to manage whether script is allowed to update the status bar within the zone. If you enable this policy setting, script is allowed to update the status bar. oval:gov.nist.USGCB.ie7:def:118399 The "Allow status bar updates via script" setting should be configured correctly for the Locked-Down Trusted Sites Zone. oval:gov.nist.USGCB.ie7:def:251 This policy setting allows you to manage whether users can install Active Desktop items from this zone. The settings for this option are: If you enable this policy setting, users can install desktop items from this zone automatically. oval:gov.nist.USGCB.ie7:def:252 This policy setting determines whether users will be prompted for non user-initiated file downloads. Regardless of this setting, users will receive file download dialogs for user-initiated downloads. oval:gov.nist.USGCB.ie7:def:498 This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting, users can drag files or copy and paste files from this zone automatically. |