Back

Configure the "Use Pop-up Blocker" setting in limited functionality environments properly.


CONTROL ID
04441
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure Internet Browser security options according to organizational standards., CC ID: 02166

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • This setting determines if pop-up windows can be opened. For Enterprise Client environments, the Use Pop-up Blocker setting is Not Configured. For Specialized Security - Limited Functionality environments, this setting should be set to Enabled:Enable. This setting is applicable to the Internet Zone … (Pg 115, Microsoft Windows Vista Security Guide Appendix A: Security Group Policy Settings)
  • The "Use Pop-up Blocker" setting should be configured correctly for the Restricted Sites Zone. Technical Mechanisms: Local Internet Options: GPO Settings:[Computer Configuration | User Configuration]/Network/Internet Explorer/Internet Control Panel/Security Page/Restricted Sites Zone Registry Key… (CCE-4018-8, Common Configuration Enumeration List, Combined XML: Internet Explorer 7, 5.20130214)
  • The "Use Pop-up Blocker" machine setting should be configured correctly for the Restricted Sites Zone. Technical Mechanisms: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Use Pop-up Blocker (… (CCE-10094-1, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • The "Use Pop-up Blocker" machine setting should be configured correctly for the Internet Zone. Technical Mechanisms: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Use Pop-up Blocker (2) Registry Key:… (CCE-10486-9, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • Enable the Use Pop-up Blocker setting in a limited functionality environment (oval:gov.nist.fdcc.ie7:def:1179, oval:gov.nist.fdcc.ie7:def:1100, FDCC Windows IE7 SCAP content using OVAL (fdcc-ie7-oval.xml, fdcc-ie7-patches.xml), Version 5.4)
  • Use Pop-up Blocker - Internet Zone - Local Computer (UsePop-upBlocker_InternetZone_LocalComputer, NIST SCAP Microsoft Internet Explorer Version 7 (fdcc-ie7-xccdf.xml), FDCC IE7 (1.2) SCAP Content - OVAL 5.4)
  • Use Pop-up Blocker - Restricted Sites Zone - Local Computer (UsePop-upBlocker_RestrictedSitesZone_LocalComputer, NIST SCAP Microsoft Internet Explorer Version 7 (fdcc-ie7-xccdf.xml), FDCC IE7 (1.2) SCAP Content - OVAL 5.4)
  • This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If you enable this policy setting, most unwanted pop-up windows are prevented from appearing. (xccdf_gov.nist_rule_UsePop-upBlocker_InternetZone_LocalComputer, oval:gov.nist.USGCB.ie7:def:1179, oval:gov.nist.USGCB.ie7:tst:3521, oval:gov.nist.USGCB.ie7:obj:126, oval:gov.nist.USGCB.ie7:ste:3508, USGCB: Guidance for Securing Microsoft Internet Explorer 7, v1.2.3.1)
  • This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. (xccdf_gov.nist_rule_UsePop-upBlocker_RestrictedSitesZone_LocalComputer, oval:gov.nist.USGCB.ie7:def:1100, oval:gov.nist.USGCB.ie7:tst:3546, oval:gov.nist.USGCB.ie7:obj:50, oval:gov.nist.USGCB.ie7:ste:3444, USGCB: Guidance for Securing Microsoft Internet Explorer 7, v1.2.3.1)
  • This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If you enable this policy setting, most unwanted pop-up windows are prevented from appearing. (xccdf_gov.nist_rule_UsePop-upBlocker_InternetZone_LocalComputer, oval:gov.nist.USGCB.ie8:def:31040, oval:gov.nist.USGCB.ie8:tst:31040, oval:gov.nist.USGCB.ie8:obj:31040, oval:gov.nist.USGCB.ie8:ste:31040, USGCB: Guidance for Securing Microsoft Internet Explorer 8, v1.2.3.1)
  • This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. (xccdf_gov.nist_rule_UsePop-upBlocker_RestrictedSitesZone_LocalComputer, oval:gov.nist.USGCB.ie8:def:31081, oval:gov.nist.USGCB.ie8:tst:31081, oval:gov.nist.USGCB.ie8:obj:31081, oval:gov.nist.USGCB.ie8:ste:31081, USGCB: Guidance for Securing Microsoft Internet Explorer 8, v1.2.3.1)