Design-time.ĭisabling of user name and password syntax from being used in URLs must be enforced. VSTO projects require access to the Visual Basic for Applications project system in Excel, PowerPoint, and Word, even though the projects do not use Visual Basic for Applications. Content, code, and add-ins are allowed to load from Trusted Locations with minimal security and without. If a new.ĭisallowance of Trusted Locations on the network must be enforced.įiles located in Trusted Locations and specified in the Trust Center are assumed to be safe. ![]() Ensure this setting is enabled to specify that all new files are created in PowerPoint 2010. ![]() When users create new PowerPoint files, PowerPoint 2010 saves them in the new *.pptx format. Save files default format must be configured. This functionality can be controlled separately for instances of Internet Explorer spawned by. To protect users from attacks, Internet Explorer usually does not attempt to load malformed URLs. Navigation to URL's embedded in Office products must be blocked. This functionality can be controlled separately for instances of. The Pop-up Blocker feature in Internet Explorer can be used to block most unwanted pop-up and pop-under windows from appearing. Links that invoke instances of IE from within an Office product must be blocked. ![]() If an application is configured to require all add-ins be signed by a trusted publisher, any unsigned add-ins the application loads will be disabled and the application will display the Trust Bar. Trust Bar Notifications for unsigned application add-ins must be blocked. Findings (MAC III - Administrative Sensitive) Finding ID
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |