| Checked | Name | Title |
|---|
| ☐ | SV-59337r8_rule | Turn off Encryption Support must be enabled. |
| ☐ | SV-59339r1_rule | The Internet Explorer warning about certificate address mismatch must be enforced. |
| ☐ | SV-59341r4_rule | Check for publishers certificate revocation must be enforced. |
| ☐ | SV-59345r1_rule | The Download signed ActiveX controls property must be disallowed (Internet zone). |
| ☐ | SV-59347r1_rule | The Download unsigned ActiveX controls property must be disallowed (Internet zone). |
| ☐ | SV-59365r1_rule | The Initialize and script ActiveX controls not marked as safe property must be disallowed (Internet zone). |
| ☐ | SV-59371r1_rule | The Java permissions must be disallowed (Internet zone). |
| ☐ | SV-59373r1_rule | Accessing data sources across domains must be disallowed (Internet zone). |
| ☐ | SV-59375r1_rule | Functionality to drag and drop or copy and paste files must be disallowed (Internet zone). |
| ☐ | SV-59377r1_rule | Launching programs and files in IFRAME must be disallowed (Internet zone). |
| ☐ | SV-59379r1_rule | Navigating windows and frames across different domains must be disallowed (Internet zone). |
| ☐ | SV-59381r1_rule | Userdata persistence must be disallowed (Internet zone). |
| ☐ | SV-59385r1_rule | Clipboard operations via script must be disallowed (Internet zone). |
| ☐ | SV-59387r1_rule | Logon options must be configured to prompt (Internet zone). |
| ☐ | SV-59389r1_rule | Java permissions must be configured with High Safety (Intranet zone). |
| ☐ | SV-59407r1_rule | Java permissions must be configured with High Safety (Trusted Sites zone). |
| ☐ | SV-59409r1_rule | Dragging of content from different domains within a window must be disallowed (Internet zone). |
| ☐ | SV-59411r1_rule | Dragging of content from different domains across windows must be disallowed (Restricted Sites zone). |
| ☐ | SV-59413r1_rule | Internet Explorer Processes Restrict ActiveX Install must be enforced (Explorer). |
| ☐ | SV-59417r1_rule | Internet Explorer Processes Restrict ActiveX Install must be enforced (iexplore). |
| ☐ | SV-59419r1_rule | Dragging of content from different domains within a window must be disallowed (Restricted Sites zone). |
| ☐ | SV-59437r1_rule | The Download signed ActiveX controls property must be disallowed (Restricted Sites zone). |
| ☐ | SV-59439r1_rule | The Download unsigned ActiveX controls property must be disallowed (Restricted Sites zone). |
| ☐ | SV-59441r1_rule | The Initialize and script ActiveX controls not marked as safe property must be disallowed (Restricted Sites zone). |
| ☐ | SV-59443r1_rule | ActiveX controls and plug-ins must be disallowed (Restricted Sites zone). |
| ☐ | SV-59445r1_rule | ActiveX controls marked safe for scripting must be disallowed (Restricted Sites zone). |
| ☐ | SV-59447r1_rule | File downloads must be disallowed (Restricted Sites zone). |
| ☐ | SV-59451r1_rule | Java permissions must be disallowed (Restricted Sites zone). |
| ☐ | SV-59453r1_rule | Accessing data sources across domains must be disallowed (Restricted Sites zone). |
| ☐ | SV-59455r1_rule | The Allow META REFRESH property must be disallowed (Restricted Sites zone). |
| ☐ | SV-59457r1_rule | Functionality to drag and drop or copy and paste files must be disallowed (Restricted Sites zone). |
| ☐ | SV-59461r1_rule | Launching programs and files in IFRAME must be disallowed (Restricted Sites zone). |
| ☐ | SV-59463r1_rule | Navigating windows and frames across different domains must be disallowed (Restricted Sites zone). |
| ☐ | SV-59465r1_rule | Userdata persistence must be disallowed (Restricted Sites zone). |
| ☐ | SV-59467r1_rule | Active scripting must be disallowed (Restricted Sites Zone). |
| ☐ | SV-59469r1_rule | Clipboard operations via script must be disallowed (Restricted Sites zone). |
| ☐ | SV-59471r1_rule | Logon options must be configured and enforced (Restricted Sites zone). |
| ☐ | SV-59473r1_rule | Configuring History setting must be set to 40 days. |
| ☐ | SV-59479r1_rule | Internet Explorer must be set to disallow users to add/delete sites. |
| ☐ | SV-59481r1_rule | Internet Explorer must be configured to disallow users to change policies. |
| ☐ | SV-59483r1_rule | Internet Explorer must be configured to use machine settings. |
| ☐ | SV-59485r1_rule | Security checking features must be enforced. |
| ☐ | SV-59489r2_rule | Software must be disallowed to run or install with invalid signatures. |
| ☐ | SV-59493r2_rule | Checking for server certificate revocation must be enforced. |
| ☐ | SV-59497r1_rule | Checking for signatures on downloaded programs must be enforced. |
| ☐ | SV-59499r1_rule | All network paths (UNCs) for Intranet sites must be disallowed. |
| ☐ | SV-59501r1_rule | Script-initiated windows without size or position constraints must be disallowed (Internet zone). |
| ☐ | SV-59503r1_rule | Script-initiated windows without size or position constraints must be disallowed (Restricted Sites zone). |
| ☐ | SV-59505r1_rule | Scriptlets must be disallowed (Internet zone). |
| ☐ | SV-59507r1_rule | Automatic prompting for file downloads must be disallowed (Internet zone). |
| ☐ | SV-59509r1_rule | Java permissions must be disallowed (Local Machine zone). |
| ☐ | SV-59511r1_rule | Java permissions must be disallowed (Locked Down Local Machine zone). |
| ☐ | SV-59513r1_rule | Java permissions must be disallowed (Locked Down Intranet zone). |
| ☐ | SV-59517r1_rule | Java permissions must be disallowed (Locked Down Trusted Sites zone). |
| ☐ | SV-59527r1_rule | Java permissions must be disallowed (Locked Down Restricted Sites zone). |
| ☐ | SV-59529r1_rule | XAML files must be disallowed (Internet zone). |
| ☐ | SV-59533r1_rule | XAML files must be disallowed (Restricted Sites zone). |
| ☐ | SV-59545r1_rule | Protected Mode must be enforced (Internet zone). |
| ☐ | SV-59549r1_rule | Protected Mode must be enforced (Restricted Sites zone). |
| ☐ | SV-59553r1_rule | Pop-up Blocker must be enforced (Internet zone). |
| ☐ | SV-59555r1_rule | Pop-up Blocker must be enforced (Restricted Sites zone). |
| ☐ | SV-59557r1_rule | Websites in less privileged web content zones must be prevented from navigating into the Internet zone. |
| ☐ | SV-59559r1_rule | Websites in less privileged web content zones must be prevented from navigating into the Restricted Sites zone. |
| ☐ | SV-59565r1_rule | Allow binary and script behaviors must be disallowed (Restricted Sites zone). |
| ☐ | SV-59569r1_rule | Automatic prompting for file downloads must be disallowed (Restricted Sites zone). |
| ☐ | SV-59573r1_rule | Internet Explorer Processes for MIME handling must be enforced. (Reserved) |
| ☐ | SV-59575r1_rule | Internet Explorer Processes for MIME handling must be enforced (Explorer). |
| ☐ | SV-59577r1_rule | Internet Explorer Processes for MIME handling must be enforced (iexplore). |
| ☐ | SV-59579r1_rule | Internet Explorer Processes for MIME sniffing must be enforced (Reserved). |
| ☐ | SV-59581r1_rule | Internet Explorer Processes for MIME sniffing must be enforced (Explorer). |
| ☐ | SV-59583r1_rule | Internet Explorer Processes for MIME sniffing must be enforced (iexplore). |
| ☐ | SV-59585r1_rule | Internet Explorer Processes for MK protocol must be enforced (Reserved). |
| ☐ | SV-59587r1_rule | Internet Explorer Processes for MK protocol must be enforced (Explorer). |
| ☐ | SV-59589r1_rule | Internet Explorer Processes for MK protocol must be enforced (iexplore). |
| ☐ | SV-59591r1_rule | Internet Explorer Processes for Zone Elevation must be enforced (Reserved). |
| ☐ | SV-59593r1_rule | Internet Explorer Processes for Zone Elevation must be enforced (Explorer). |
| ☐ | SV-59595r1_rule | Internet Explorer Processes for Zone Elevation must be enforced (iexplore). |
| ☐ | SV-59597r1_rule | Internet Explorer Processes for Restrict File Download must be enforced (Reserved). |
| ☐ | SV-59645r1_rule | Internet Explorer Processes for Restrict File Download must be enforced (Explorer). |
| ☐ | SV-59647r1_rule | Internet Explorer Processes for Restrict File Download must be enforced (iexplore). |
| ☐ | SV-59653r1_rule | Internet Explorer Processes for restricting pop-up windows must be enforced (Reserved). |
| ☐ | SV-59655r1_rule | Internet Explorer Processes for restricting pop-up windows must be enforced (Explorer). |
| ☐ | SV-59657r1_rule | Internet Explorer Processes for restricting pop-up windows must be enforced (iexplore). |
| ☐ | SV-59663r1_rule | .NET Framework-reliant components not signed with Authenticode must be disallowed to run (Restricted Sites Zone). |
| ☐ | SV-59665r1_rule | .NET Framework-reliant components signed with Authenticode must be disallowed to run (Restricted Sites Zone). |
| ☐ | SV-59667r1_rule | Scripting of Java applets must be disallowed (Restricted Sites zone). |
| ☐ | SV-59673r1_rule | AutoComplete feature for forms must be disallowed. |
| ☐ | SV-59677r1_rule | Crash Detection management must be enforced. |
| ☐ | SV-59681r1_rule | Turn on the auto-complete feature for user names and passwords on forms must be disabled. |
| ☐ | SV-59685r3_rule | Managing SmartScreen Filter use must be enforced. |
| ☐ | SV-59695r1_rule | Browser must retain history on exit. |
| ☐ | SV-59707r1_rule | Deleting websites that the user has visited must be disallowed. |
| ☐ | SV-59713r1_rule | InPrivate Browsing must be disallowed. |
| ☐ | SV-59715r1_rule | Scripting of Internet Explorer WebBrowser control property must be disallowed (Internet zone). |
| ☐ | SV-59719r1_rule | When uploading files to a server, the local directory path must be excluded (Internet zone). |
| ☐ | SV-59723r1_rule | Internet Explorer Processes for Notification Bars must be enforced (Reserved). |
| ☐ | SV-59725r1_rule | Security Warning for unsafe files must be set to prompt (Internet zone). |
| ☐ | SV-59727r1_rule | Internet Explorer Processes for Notification Bars must be enforced (Explorer). |
| ☐ | SV-59729r1_rule | ActiveX controls without prompt property must be used in approved domains only (Internet zone). |
| ☐ | SV-59735r1_rule | Internet Explorer Processes for Notification Bars must be enforced (iexplore). |
| ☐ | SV-59745r1_rule | Cross-Site Scripting Filter must be enforced (Internet zone). |
| ☐ | SV-59749r1_rule | Scripting of Internet Explorer WebBrowser Control must be disallowed (Restricted Sites zone). |
| ☐ | SV-59751r1_rule | When uploading files to a server, the local directory path must be excluded (Restricted Sites zone). |
| ☐ | SV-59755r1_rule | Security Warning for unsafe files must be disallowed (Restricted Sites zone). |
| ☐ | SV-59759r1_rule | ActiveX controls without prompt property must be used in approved domains only (Restricted Sites zone). |
| ☐ | SV-59761r1_rule | Cross-Site Scripting Filter property must be enforced (Restricted Sites zone). |
| ☐ | SV-59763r1_rule | Internet Explorer Processes Restrict ActiveX Install must be enforced (Reserved). |
| ☐ | SV-59769r1_rule | Status bar updates via script must be disallowed (Internet zone). |
| ☐ | SV-59773r1_rule | .NET Framework-reliant components not signed with Authenticode must be disallowed to run (Internet zone). |
| ☐ | SV-59787r1_rule | .NET Framework-reliant components signed with Authenticode must be disallowed to run (Internet zone). |
| ☐ | SV-59793r1_rule | Scriptlets must be disallowed (Restricted Sites zone). |
| ☐ | SV-59805r1_rule | Status bar updates via script must be disallowed (Restricted Sites zone). |
| ☐ | SV-59841r2_rule | When Enhanced Protected Mode is enabled, ActiveX controls must be disallowed to run in Protected Mode. |
| ☐ | SV-59847r1_rule | Dragging of content from different domains across windows must be disallowed (Internet zone). |
| ☐ | SV-59853r3_rule | Enhanced Protected Mode functionality must be enforced. |
| ☐ | SV-59861r2_rule | The 64-bit tab processes, when running in Enhanced Protected Mode on 64-bit versions of Windows, must be turned on. |
| ☐ | SV-59863r1_rule | Anti-Malware programs against ActiveX controls must be run for the Internet zone. |
| ☐ | SV-59865r1_rule | Anti-Malware programs against ActiveX controls must be run for the Intranet zone. |
| ☐ | SV-59869r1_rule | Anti-Malware programs against ActiveX controls must be run for the Local Machine zone. |
| ☐ | SV-59871r1_rule | Anti-Malware programs against ActiveX controls must be run for the Restricted Sites zone. |
| ☐ | SV-59875r1_rule | Anti-Malware programs against ActiveX controls must be run for the Trusted Sites zone. |
| ☐ | SV-79201r2_rule | Prevent bypassing SmartScreen Filter warnings must be enabled. |
| ☐ | SV-79203r2_rule | Prevent bypassing SmartScreen Filter warnings about files that are not commonly downloaded from the internet must be enabled. |
| ☐ | SV-79205r1_rule | Prevent per-user installation of ActiveX controls must be enabled. |
| ☐ | SV-79207r2_rule | Prevent ignoring certificate errors option must be enabled. |
| ☐ | SV-79209r1_rule | Turn on SmartScreen Filter scan option for the Internet Zone must be enabled. |
| ☐ | SV-79211r1_rule | Turn on SmartScreen Filter scan option for the Restricted Sites Zone must be enabled. |
| ☐ | SV-79213r1_rule | The Initialize and script ActiveX controls not marked as safe must be disallowed (Intranet Zone). |
| ☐ | SV-79215r1_rule | The Initialize and script ActiveX controls not marked as safe must be disallowed (Trusted Sites Zone). |
| ☐ | SV-79219r3_rule | Allow Fallback to SSL 3.0 (Internet Explorer) must be disabled. |
| ☐ | SV-87395r2_rule | Run once selection for running outdated ActiveX controls must be disabled. |
| ☐ | SV-87397r2_rule | Enabling outdated ActiveX controls for Internet Explorer must be blocked. |
| ☐ | SV-87399r2_rule | Use of the Tabular Data Control (TDC) ActiveX control must be disabled for the Internet Zone. |
| ☐ | SV-87401r2_rule | Use of the Tabular Data Control (TDC) ActiveX control must be disabled for the Restricted Sites Zone. |
| ☐ | SV-89849r1_rule | VBScript must not be allowed to run in Internet Explorer (Internet zone). |
| ☐ | SV-89851r1_rule | VBScript must not be allowed to run in Internet Explorer (Restricted Sites zone). |
| ☐ | SV-106631r1_rule | Internet Explorer Development Tools Must Be Disabled. |
STIGQter: STIG Summary: