DISA STIG Microsoft Internet Explorer 9 v1r15

Audit Details

Name: DISA STIG Microsoft Internet Explorer 9 v1r15

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Windows

Revision: 1.2

Estimated Item Count: 137

File Details

Filename: DISA_STIG_Microsoft_Internet_Explorer_9_v1r15.audit

Size: 246 kB

MD5: e510221c5f674bf60adb51c8767603ac
SHA256: c882746c6af8dcb8556dbe41b673bc032951173a1b5712517c402a363d44b9db

Audit Items

DescriptionCategories
DISA_STIG_Microsoft_Internet_Explorer_9_v1r15.audit from DISA Microsoft Internet Explorer 9 v1r15 STIG
DTBI001 - The IE home page is not set to blank or a trusted site.

CONFIGURATION MANAGEMENT

DTBI002 - IE9 - The installed version of IE must be a supported version.

SYSTEM AND INFORMATION INTEGRITY

DTBI010 - First Run Customize settings must be enabled as home page.

CONFIGURATION MANAGEMENT

DTBI014 - The IE TLS parameter must be set correctly.

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI015 - The IE warning about certificate address mismatch must be enforced.

SYSTEM AND INFORMATION INTEGRITY

DTBI018 - Check for publishers certificate revocation must be enforced.

IDENTIFICATION AND AUTHENTICATION

DTBI022 - The Download signed ActiveX controls property must be disallowed (Internet zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI023 - The Download unsigned ActiveX controls property must be disallowed (Internet zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI024 - The Initialize and script ActiveX controls not marked as safe property must be disallowed (Internet zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI030 - Font downloads must be disallowed (Internet zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI031 - The Java Permissions must be disallowed (Internet zone).

CONFIGURATION MANAGEMENT

DTBI032 - Accessing data sources across domains must be disallowed (Internet zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI036 - Functionality to drag and drop or copy and paste files must be disallowed (Internet zone).

CONFIGURATION MANAGEMENT

DTBI038 - Launching programs and files in IFRAME must be disallowed (Internet zone).

CONFIGURATION MANAGEMENT

DTBI039 - Navigating windows and frames across different domains must be disallowed (Internet zone).

ACCESS CONTROL

DTBI042 - Userdata persistence must be disallowed (Internet zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI044 - Clipboard operations via script must be disallowed (Internet zone).

CONFIGURATION MANAGEMENT

DTBI046 - Logon options must be configured to prompt (Internet zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI061 - Java Permissions must be configured with High Safety (Intranet zone).

CONFIGURATION MANAGEMENT

DTBI091 - The Java Permissions must be set with High Safety (Trusted Sites zone).

CONFIGURATION MANAGEMENT

DTBI112 - The Download signed ActiveX controls property must be disallowed (Restricted Site zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI113 - The Download unsigned ActiveX controls property must be disallowed (Restricted Site zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI114 - The Initialize and script ActiveX controls not marked as safe property must be disallowed (Restricted Site zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI115 - ActiveX controls and plug-ins must be disallowed (Restricted Sites zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI116 - ActiveX controls marked safe for scripting must be disallowed (Restricted Sites zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI119 - File downloads must be disallowed (Restricted Site zone).

CONFIGURATION MANAGEMENT

DTBI120 - Font downloads must be disallowed (Restricted Site zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI121 - Java Permissions must be disallowed (Restricted Sites zone).

CONFIGURATION MANAGEMENT

DTBI122 - Accessing data sources across domains must be disallowed (Restricted Sites zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI123 - The Allow META REFRESH property must be disallowed (Restricted Sites zone).

CONFIGURATION MANAGEMENT

DTBI126 - Functionality to drag and drop or copy and paste files must be disallowed (Restricted Sites zone).

CONFIGURATION MANAGEMENT

DTBI127 - Installation of desktop items must be disallowed (Restricted Sites zone).

CONFIGURATION MANAGEMENT

DTBI128 - Launching programs and files in IFRAME must be disallowed (Restricted Sites zone).

CONFIGURATION MANAGEMENT

DTBI129 - Navigating windows and frames across different domains must be disallowed (Restricted Sites zone).

ACCESS CONTROL

DTBI132 - Userdata persistence must be disallowed (Restricted Sites zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI133 - Active scripting must be disallowed (Restricted Sites Zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI134 - Clipboard operations via script must be disallowed (Restricted Sites zone).

CONFIGURATION MANAGEMENT

DTBI136 - Logon options must be configured and enforced (Restricted Sites zone).

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI300 - Configuring History setting must be set to 40 days - DaysToKeep

CONFIGURATION MANAGEMENT

DTBI300 - Configuring History setting must be set to 40 days - History

AUDIT AND ACCOUNTABILITY

DTBI305 - Automatic configuration of Internet Explorer must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI315 - Participation in the Customer Experience Improvement Program must be disallowed.

CONFIGURATION MANAGEMENT

DTBI318 - Internet Explorer must be set to disallow users to add/delete sites.

CONFIGURATION MANAGEMENT

DTBI319 - Internet Explorer must be configured to disallow users to change policies.

CONFIGURATION MANAGEMENT

DTBI320 - Internet Explorer must be configured to use machine settings.

CONFIGURATION MANAGEMENT

DTBI325 - Security checking features must be enforced.

CONFIGURATION MANAGEMENT

DTBI340 - Active content from CDs must be disallowed to run on user machines.

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI350 - Software must be disallowed to run or install with invalid signatures.

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI355 - Third-party browser extensions must be disallowed.

CONFIGURATION MANAGEMENT