CIS Mozilla Firefox 38 ESR Linux L1 v1.0.0

Audit Details

Name: CIS Mozilla Firefox 38 ESR Linux L1 v1.0.0

Updated: 4/25/2022

Authority: CIS

Plugin: Unix

Revision: 1.10

Estimated Item Count: 54

File Details

Filename: CIS_Mozilla_Firefox_38_ESR_v1.0.0_Linux_Level1.audit

Size: 69.5 kB

MD5: a07636a04d0e2be14c2f0afbd11fe04f
SHA256: 06dd03d74502aabb88ac1714efe84f7d40db19f7a247eb530c4f34fa22fb3af2

Audit Items

DescriptionCategories
1.1 Create local-settings.js file - general.config.filename

ACCESS CONTROL

1.1 Create local-settings.js file - general.config.obscure_value

CONFIGURATION MANAGEMENT

1.2 Set permissions on local-settings.js
1.3 Create mozilla.cfg file.

CONFIGURATION MANAGEMENT

1.4 Set permissions on mozilla.cfg
1.5 Protect Firefox Binaries
2.1 Enable Automatic Updates - app.update.auto

SYSTEM AND INFORMATION INTEGRITY

2.1 Enable Automatic Updates - app.update.enabled

SYSTEM AND INFORMATION INTEGRITY

2.1 Enable Automatic Updates - app.update.staging.enabled

SYSTEM AND INFORMATION INTEGRITY

2.2 Enable Auto-Notification of Outdated Plugins

SYSTEM AND INFORMATION INTEGRITY

2.3 Enable Information Bar for Outdated Plugins

SYSTEM AND INFORMATION INTEGRITY

2.4 Set Update Interval Time Checks

SYSTEM AND INFORMATION INTEGRITY

2.5 Set Update Wait Time Prompt

SYSTEM AND INFORMATION INTEGRITY

2.6 Ensure Update-related UI Components are Displayed

CONFIGURATION MANAGEMENT

2.7 Set Search Provider Update Behavior

CONFIGURATION MANAGEMENT

3.1 Validate Proxy Settings
3.3 Disable NTLM v1

IDENTIFICATION AND AUTHENTICATION

3.4 Enable Warning For "Phishy" URLs

CONFIGURATION MANAGEMENT

3.6 Set File URI Origin Policy

CONFIGURATION MANAGEMENT

3.7 Disable Cloud Sync

CONFIGURATION MANAGEMENT

3.8 Disable WebRTC - media.peerconnection.enabled

CONFIGURATION MANAGEMENT

3.8 Disable WebRTC - media.peerconnection.use_document_iceservers

CONFIGURATION MANAGEMENT

4.2 Set Security TLS Version Maximum

SYSTEM AND COMMUNICATIONS PROTECTION

4.3 Set Security TLS Version Minimum

SYSTEM AND COMMUNICATIONS PROTECTION

4.5 Block Mixed Active Content

CONFIGURATION MANAGEMENT

5.1 Disallow JavaScript's Ability to Change the Status Bar Text

CONFIGURATION MANAGEMENT

5.2 Disable Scripting of Plugins by JavaScript

CONFIGURATION MANAGEMENT

5.3 Disallow JavaScript's Ability to Hide the Address Bar

CONFIGURATION MANAGEMENT

5.4 Disallow JavaScript's Ability to Hide the Status Bar

CONFIGURATION MANAGEMENT

5.5 Disable Closing of Windows via Scripts

CONFIGURATION MANAGEMENT

5.6 Block Pop-up Windows

CONFIGURATION MANAGEMENT

5.7 Disable Displaying JavaScript in History URLs

CONFIGURATION MANAGEMENT

6.1 Disallow Credential Storage

CONFIGURATION MANAGEMENT

6.2 Do Not Accept Third Party Cookies

CONFIGURATION MANAGEMENT

6.3 Tracking Protection - privacy.donottrackheader.enabled

CONFIGURATION MANAGEMENT

6.3 Tracking Protection - privacy.donottrackheader.value

CONFIGURATION MANAGEMENT

6.3 Tracking Protection - privacy.trackingprotection.enabled

CONFIGURATION MANAGEMENT

6.3 Tracking Protection - privacy.trackingprotection.pbmode

CONFIGURATION MANAGEMENT

6.4 Set Delay for Enabling Security Sensitive Dialog Boxes

SYSTEM AND INFORMATION INTEGRITY

6.5 Disable Geolocation Serivces

CONFIGURATION MANAGEMENT

7.1 Secure Application Plug-ins

CONFIGURATION MANAGEMENT

7.2 Disabling Auto-Install of Add-ons

CONFIGURATION MANAGEMENT

7.3 Enable Extension Block List

CONFIGURATION MANAGEMENT

7.4 Set Extension Block List Interval

CONFIGURATION MANAGEMENT

7.5 Enable Warning for External Protocol Handler

CONFIGURATION MANAGEMENT

7.6 Disable Popups Initiated by Plugins

CONFIGURATION MANAGEMENT

7.7 Enable Extension Auto Update

SYSTEM AND INFORMATION INTEGRITY

7.8 Enable Extension Update

CONFIGURATION MANAGEMENT

7.9 Set Extension Update Interval Time Checks

SYSTEM AND INFORMATION INTEGRITY

8.1 Enable Virus Scanning for Downloads

SYSTEM AND INFORMATION INTEGRITY