"Previously, Active Content was allowed to run in Trusted Documents even when an IT administrator had set a policy to block it."Īs part of an ongoing effort towards Office security hardening, the IT administrators' choice to block Active Content even for trusted files will now always take precedence over the user's choice to trust a document. macros, ActiveX, DDE) on Trusted Documents," Microsoft said on the Microsoft 365 Roadmap. "We are changing the behavior of Office applications to enforce policies that block Active Content (ex. Part of an ongoing Office security hardening effort Therefore, you should trust documents only if you trust the source of the file," Microsoft explains. After a document is trusted, it does not open in Protected View. "However, the prompt appears if the file was moved since you last trusted the file. Trusted documents will automatically open without prompts even if altered by adding new (potentially malicious) active content, bypassing Office's Protected View, which opens files from potentially unsafe locations as read-only.
Redmond says trusted docs are files with active content (e.g., ActiveX controls, macros, and Dynamic Data Exchange (DDE) functions that don't require user interaction) that open without warnings after the content has been enabled.
Microsoft plans to allow Office 365 admins ensure that end-users can't ignore organization-wide policies set up to block active content on Trusted Documents.
0 kommentar(er)
