Back

Configure the "Allow drag and drop or copy and paste files" setting.


CONTROL ID
04419
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure Internet Browser security options according to organizational standards., CC ID: 02166

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • This setting determines if users can drag files or copy and paste files within the zone. For Enterprise Client environments, the Allow Drag And Drop Or Copy And Paste Files setting is Not Configured. For Specialized Security - Limited Functionality environments, this setting should be set to Enabled… (Pg 109, Microsoft Windows Vista Security Guide Appendix A: Security Group Policy Settings)
  • The "Drag and drop or copy and paste files" setting should be configured correctly for the Restricted Sites Zone. Technical Mechanisms: Local Internet Options: GPO Settings:[Computer Configuration | User Configuration]/Network/Internet Explorer/Internet Control Panel/Security Page/Restricted Sites… (CCE-3337-3, Common Configuration Enumeration List, Combined XML: Internet Explorer 7, 5.20130214)
  • The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Internet Zone. Technical Mechanisms: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow drag a… (CCE-10033-9, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Restricted Sites Zone. Technical Mechanisms: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Z… (CCE-9667-7, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Internet Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow drag and drop … (CCE-15254-6, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Internet Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Z… (CCE-15976-4, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Re… (CCE-15812-1, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Local Machine Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local… (CCE-16486-3, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trust… (CCE-16732-0, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Intranet Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Z… (CCE-16442-6, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Local Machine Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow drag… (CCE-15800-6, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Restricted Sites Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allo… (CCE-16154-7, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Intranet Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow drag and drop … (CCE-16248-7, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Trusted Sites Zone. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow drag… (CCE-16586-0, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • Disable the Allow Drag And Drop Or Copy And Paste Files setting (oval:gov.nist.fdcc.ie7:def:1083, oval:gov.nist.fdcc.ie7:def:498, FDCC Windows IE7 SCAP content using OVAL (fdcc-ie7-oval.xml, fdcc-ie7-patches.xml), Version 5.4)
  • Allow drag and drop or copy and paste files - Internet Zone - Local Computer (AllowDragDropOrCopyPasteFiles_InternetZone_LocalComputer, NIST SCAP Microsoft Internet Explorer Version 7 (fdcc-ie7-xccdf.xml), FDCC IE7 (1.2) SCAP Content - OVAL 5.4)
  • Allow drag and drop or copy and paste files - Restricted Sites Zone - Local Computer (AllowDragDropOrCopyPasteFiles_RestrictedSitesZone_LocalComputer, NIST SCAP Microsoft Internet Explorer Version 7 (fdcc-ie7-xccdf.xml), FDCC IE7 (1.2) SCAP Content - OVAL 5.4)
  • This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting, users can drag files or copy and paste files from this zone automatically. (xccdf_gov.nist_rule_AllowDragDropOrCopyPasteFiles_RestrictedSitesZone_LocalComputer, oval:gov.nist.USGCB.ie7:def:498, oval:gov.nist.USGCB.ie7:tst:3272, oval:gov.nist.USGCB.ie7:obj:163, oval:gov.nist.USGCB.ie7:ste:3533, USGCB: Guidance for Securing Microsoft Internet Explorer 7, v1.2.3.1)
  • This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting, users can drag files or copy and paste files from this zone automatically. (xccdf_gov.nist_rule_AllowDragDropOrCopyPasteFiles_InternetZone_LocalComputer, oval:gov.nist.USGCB.ie7:def:1083, oval:gov.nist.USGCB.ie7:tst:3726, oval:gov.nist.USGCB.ie7:obj:152, oval:gov.nist.USGCB.ie7:ste:3241, USGCB: Guidance for Securing Microsoft Internet Explorer 7, v1.2.3.1)
  • This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting, users can drag files or copy and paste files from this zone automatically. (xccdf_gov.nist_rule_AllowDragDropOrCopyPasteFiles_InternetZone_LocalComputer, oval:gov.nist.USGCB.ie8:def:31019, oval:gov.nist.USGCB.ie8:tst:31019, oval:gov.nist.USGCB.ie8:obj:31019, oval:gov.nist.USGCB.ie8:ste:31019, USGCB: Guidance for Securing Microsoft Internet Explorer 8, v1.2.3.1)
  • This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting, users can drag files or copy and paste files from this zone automatically. (xccdf_gov.nist_rule_AllowDragDropOrCopyPasteFiles_RestrictedSitesZone_LocalComputer, oval:gov.nist.USGCB.ie8:def:31055, oval:gov.nist.USGCB.ie8:tst:31055, oval:gov.nist.USGCB.ie8:obj:31055, oval:gov.nist.USGCB.ie8:ste:31055, USGCB: Guidance for Securing Microsoft Internet Explorer 8, v1.2.3.1)