| Checked | Name | Title |
|---|
| ☐ | SV-33404r2_rule | Disabling of user name and password syntax from being used in URLs must be enforced. |
| ☐ | SV-53848r1_rule | The Internet Explorer Bind to Object functionality must be enabled. |
| ☐ | SV-53850r1_rule | The Saved from URL mark must be selected to enforce Internet zone processing. |
| ☐ | SV-53853r1_rule | Navigation to URLs embedded in Office products must be blocked. |
| ☐ | SV-53863r1_rule | Links that invoke instances of Internet Explorer from within an Office product must be blocked. |
| ☐ | SV-54046r1_rule | Permit download of content from safe zones must be configured. |
| ☐ | SV-53872r1_rule | Access restriction settings for published calendars must be configured. |
| ☐ | SV-53885r1_rule | Recipients of sent email must be unable to be added to the safe senders list. |
| ☐ | SV-53915r1_rule | ActiveX One-Off forms must be configured. |
| ☐ | SV-53993r1_rule | Scripts in One-Off Outlook forms must be disallowed. |
| ☐ | SV-54047r1_rule | IE Trusted Zones assumed trusted must be blocked. |
| ☐ | SV-53919r1_rule | The Add-In Trust Level must be configured. |
| ☐ | SV-53997r1_rule | Object Model Prompt behavior for programmatic address books must be configured. |
| ☐ | SV-53954r1_rule | Action to demote an EMail Level 1 attachment to Level 2 must be configured. |
| ☐ | SV-54001r1_rule | Object Model Prompt behavior for accessing User Property Formula must be configured. |
| ☐ | SV-54000r1_rule | Object Model Prompt behavior for the SaveAs method must be configured. |
| ☐ | SV-53998r1_rule | Object Model Prompt behavior for programmatic access of user address data must be configured. |
| ☐ | SV-55912r1_rule | Object Model Prompt behavior for Meeting and Task Responses must be configured. |
| ☐ | SV-53996r1_rule | Object Model Prompt for programmatic email send behavior must be configured. |
| ☐ | SV-54002r2_rule | Trusted add-ins behavior for email must be configured. |
| ☐ | SV-53923r1_rule | The remember password for internet e-mail accounts must be disabled. |
| ☐ | SV-53976r2_rule | The prompt to display level 1 attachments must be disallowed when closing an item. |
| ☐ | SV-53957r2_rule | The prompt to display level 1 attachments must be disallowed when sending an item. |
| ☐ | SV-54056r1_rule | Disabling download full text of articles as HTML must be configured. |
| ☐ | SV-54051r1_rule | Hyperlinks in suspected phishing email messages must be disallowed. |
| ☐ | SV-54052r1_rule | RPC encryption between Outlook and Exchange server must be enforced. |
| ☐ | SV-53874r1_rule | Junk Mail UI must be configured. |
| ☐ | SV-54048r1_rule | Internet with Safe Zones for Picture Download must be disabled. |
| ☐ | SV-54049r1_rule | Intranet with Safe Zones for automatic picture downloads must be configured. |
| ☐ | SV-53941r1_rule | The ability to display level 1 attachments must be disallowed. |
| ☐ | SV-54042r3_rule | External content and pictures in HTML email must be displayed. |
| ☐ | SV-53886r1_rule | The ability to add signatures to email messages must be allowed. |
| ☐ | SV-53893r1_rule | Folders in non-default stores, set as folder home pages, must be disallowed. |
| ☐ | SV-53903r1_rule | Outlook Object Model scripts must be disallowed to run for public folders. |
| ☐ | SV-53899r1_rule | Outlook Object Model scripts must be disallowed to run for shared folders. |
| ☐ | SV-54058r1_rule | Internet calendar integration in Outlook must be disabled. |
| ☐ | SV-54038r1_rule | Attachments using generated name for secure temporary folders must be configured. |
| ☐ | SV-54053r1_rule | Outlook must be configured to force authentication when connecting to an Exchange server. |
| ☐ | SV-54057r1_rule | Automatic download of Internet Calendar appointment attachments must be disallowed. |
| ☐ | SV-54044r1_rule | Automatic download content for email in Safe Senders list must be disallowed. |
| ☐ | SV-53891r1_rule | Outlook must be enforced as the default email, calendar, and contacts program. |
| ☐ | SV-54004r1_rule | Message formats must be set to use SMime. |
| ☐ | SV-54033r1_rule | Missing Root Certificates warning must be enforced. |
| ☐ | SV-53934r2_rule | Outlook Security Mode must be configured to use Group Policy settings. |
| ☐ | SV-53887r2_rule | Plain Text Options for outbound email must be configured. |
| ☐ | SV-53870r1_rule | Publishing to a Web Distributed and Authoring (DAV) server must be prevented. |
| ☐ | SV-53869r1_rule | Publishing calendars to Office Online must be prevented. |
| ☐ | SV-53929r1_rule | Users customizing attachment security settings must be prevented. |
| ☐ | SV-53867r1_rule | Read EMail as plain text must be enforced. |
| ☐ | SV-53868r1_rule | Read signed email as plain text must be enforced. |
| ☐ | SV-55898r2_rule | Level 1 file extensions must be blocked and not removed. |
| ☐ | SV-53989r2_rule | Level 2 file extensions must be blocked and not removed. |
| ☐ | SV-53871r1_rule | Level of calendar details that a user can publish must be restricted. |
| ☐ | SV-53873r1_rule | Upload method for publishing calendars to Office Online must be restricted. |
| ☐ | SV-54031r1_rule | Retrieving of CRL data must be set for online action. |
| ☐ | SV-54005r1_rule | Run in FIPS compliant mode must be enforced. |
| ☐ | SV-54003r1_rule | S/Mime interoperability with external clients for message handling must be configured. |
| ☐ | SV-54029r1_rule | Automatic sending s/Mime receipt requests must be disallowed. |
| ☐ | SV-54050r2_rule | Always warn on untrusted macros must be enforced. |
| ☐ | SV-54023r1_rule | Send all signed messages as clear signed messages must be configured. |
| ☐ | SV-53994r1_rule | Custom Outlook Object Model (OOM) action execution prompts must be configured. |
| ☐ | SV-54024r1_rule | Warning about invalid signatures must be enforced. |
| ☐ | SV-54054r1_rule | RSS feed synchronization with Common Feed List must be disallowed. |
| ☐ | SV-53882r1_rule | Trust EMail from senders in receivers contact list must be enforced. |
| ☐ | SV-54055r2_rule | RSS Feeds must be disallowed. |
| ☐ | SV-53897r1_rule | Dragging Unicode email messages to file system must be disallowed. |
| ☐ | SV-54059r1_rule | User Entries to Server List must be disallowed. |
| ☐ | SV-53862r1_rule | Add-on Management functionality must be allowed. |
| ☐ | SV-53865r1_rule | Protection from zone elevation must be enforced. |
| ☐ | SV-53866r1_rule | ActiveX installs must be configured for proper restrictions. |
| ☐ | SV-53864r1_rule | File Downloads must be configured for proper restrictions. |
| ☐ | SV-53858r1_rule | Scripted Window Security must be enforced. |
| ☐ | SV-54061r1_rule | Automatically downloading enclosures on RSS must be disallowed. |
| ☐ | SV-54067r1_rule | Outlook Rich Text options must be set for converting to plain text format. |
| ☐ | SV-54062r1_rule | Default message format must be set to use Plain Text. |
| ☐ | SV-54063r1_rule | Outlook must be configured not to prompt users to choose security settings if default settings fail. |
| ☐ | SV-54064r1_rule | Outlook minimum encryption key length settings must be set. |
| ☐ | SV-54065r1_rule | Replies or forwards to signed/encrypted messages must be signed/encrypted. |
| ☐ | SV-54066r1_rule | Check e-mail addresses against addresses of certificates being used must be disallowed. |
| ☐ | SV-54068r1_rule | The use of the weather bar in Outlook must be disabled |
| ☐ | SV-54069r1_rule | Text in Outlook that represents Internet and network paths must not be automatically turned into hyperlinks. |
STIGQter: STIG Summary: