Check: DTBI770
Microsoft Internet Explorer 10 STIG:
DTBI770
(in versions v1 r16 through v1 r14)
Title
Deleting websites that the user has visited must be disallowed. (Cat II impact)
Discussion
This policy prevents users from deleting the history of websites the user has visited. If you enable this policy setting, websites the user has visited will be preserved when the user clicks Delete. If you disable this policy setting, websites that the user has visited will be deleted when the user clicks Delete. If you do not configure this policy setting, the user will be able to select whether to delete or preserve websites the user visited when the user clicks Delete.
Check Content
The policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Internet Explorer -> Delete Browsing History -> "Prevent Deleting Web sites that the User has Visited" must be "Enabled". Procedure: Use the Windows Registry Editor to navigate to the following key: HKLM\Software\Policies\Microsoft\Internet Explorer\Privacy Criteria: If the value CleanHistory is REG_DWORD = 0, this is not a finding.
Fix Text
Set the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Internet Explorer -> Delete Browsing History -> "Prevent Deleting Web sites that the User has Visited" to "Enabled".
Additional Identifiers
Rule ID: SV-45137r1_rule
Vulnerability ID: V-22149
Group Title: DTBI770 - Web site visit history
Expert Comments
CCIs
Number | Definition |
---|---|
No CCIs are assigned to this check |
Controls
Number | Title |
---|---|
No controls are assigned to this check |