1
0
mirror of https://github.com/TommyTran732/Microsoft-Edge-Policies synced 2024-11-21 09:51:34 -05:00

Do not hardcode DefaultClipboardSetting

This commit is contained in:
Tommy 2024-08-08 08:23:56 -07:00 committed by GitHub
parent 7e8bf2dfa6
commit f0a54fa245
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
3 changed files with 1 additions and 3 deletions

View File

@ -60,7 +60,6 @@
"ConfigureShare": 1,
"CryptoWalletEnabled": false,
"DefaultBrowserSettingsCampaignEnabled": false,
"DefaultClipboardSetting": 2,
"DefaultSensorsSetting": 2,
"DefaultSerialGuardSetting": 2,
"ConfigureDoNotTrack": true,

View File

@ -7,6 +7,7 @@ Smartscreen is left as recommended to be be off, as it sends the FULL URLs of wh
For corporate environments, you will need make approprieate changes, including but not limited to:
- Disable `DeveloperToolsAvailability`. Users can be tricked into running malicious code in the browser console otherwise.
- Set `DefaultWebUsbGuardSetting` to "Block". In most cases, the websites will never need to use this API. I need it to flash GrapheneOS and StockOS on my phones.
- Set `DefaultClipboardSetting` to "Block". In most cases, users do not need to grant this permission for websites to work. I need it for GitHub Codespaces.
- Set `DefaultJavaScriptJitSetting` to "Block". This will prevent users from adding exceptions to Enhanced Security Mode.
- Remove the uBlock Origin Lite extension whitelist. I am not aware of any way to block users from granting uBlock Origin Lite access to all content on a website, which is a security risk. If you know of a way to enforce that the extension runs permission-less, please let me know.
- Set `SSLErrorOverrideAllowed` to false.

View File

@ -126,8 +126,6 @@
<integer>1</integer>
<key>DefaultBrowserSettingsCampaignEnabled</key>
<false />
<key>DefaultClipboardSetting</key>
<integer>2</integer>
<key>DefaultSensorsSetting</key>
<integer>2</integer>
<key>DefaultSerialGuardSetting</key>