CIS Mozilla Firefox 38 ESR Windows L1 v1.0.0

Audit Details

Name: CIS Mozilla Firefox 38 ESR Windows L1 v1.0.0

Updated: 4/25/2022

Authority: CIS

Plugin: Windows

Revision: 1.9

Estimated Item Count: 54

File Details

Filename: CIS_Mozilla_Firefox_38_ESR_v1.0.0_Windows_Level1.audit

Size: 73 kB

MD5: 95f6fad1e64a74ec3f2ce42b6058b8cd
SHA256: 6449a6fc897bb12953cbf3e2b8f3c888982b3261f6e3a0b4a899b277b2ee7974

Audit Items

DescriptionCategories
1.1 Create local-settings.js file - general.config.filename

CONFIGURATION MANAGEMENT

1.1 Create local-settings.js file - general.config.obscure

CONFIGURATION MANAGEMENT

1.2 Set permissions on local-settings.js

ACCESS CONTROL

1.3 Create mozilla.cfg file

CONFIGURATION MANAGEMENT

1.4 Set permissions on mozilla.cfg

CONFIGURATION MANAGEMENT

1.5 Protect Firefox Binaries

CONFIGURATION MANAGEMENT

2.1 Enable Automatic Updates - app.update.auto

SYSTEM AND INFORMATION INTEGRITY

2.1 Enable Automatic Updates - app.update.enabled

SYSTEM AND INFORMATION INTEGRITY

2.1 Enable Automatic Updates - app.update.staging.enabled

SYSTEM AND INFORMATION INTEGRITY

2.2 Enable Auto-Notification of Outdated Plugins

SYSTEM AND INFORMATION INTEGRITY

2.3 Enable Information Bar for Outdated Plugins

SYSTEM AND INFORMATION INTEGRITY

2.4 Set Update Interval Time Checks

SYSTEM AND INFORMATION INTEGRITY

2.5 Set Update Wait Time Prompt

CONFIGURATION MANAGEMENT

2.6 Ensure Update-related UI Components are Displayed

CONFIGURATION MANAGEMENT

2.7 Set Search Provider Update Behavior

CONFIGURATION MANAGEMENT

3.1 Validate Proxy Settings
3.3 Disable NTLM v1

IDENTIFICATION AND AUTHENTICATION

3.4 Enable Warning For 'Phishy' URLs

CONFIGURATION MANAGEMENT

3.6 Set File URI Origin Policy

CONFIGURATION MANAGEMENT

3.7 Disable Cloud Sync

CONFIGURATION MANAGEMENT

3.8 Disable WebRTC - media.peerconnection.enabled

CONFIGURATION MANAGEMENT

3.8 Disable WebRTC - media.peerconnection.use_document_iceservers

CONFIGURATION MANAGEMENT

4.2 Set Security TLS Version Maximum

SYSTEM AND COMMUNICATIONS PROTECTION

4.3 Set Security TLS Version Minimum

SYSTEM AND COMMUNICATIONS PROTECTION

4.5 Block Mixed Active Content

CONFIGURATION MANAGEMENT

5.1 Disallow JavaScript's Ability to Change the Status Bar Text

CONFIGURATION MANAGEMENT

5.2 Disable Scripting of Plugins by JavaScript

CONFIGURATION MANAGEMENT

5.3 Disallow JavaScript's Ability to Hide the Address Bar

CONFIGURATION MANAGEMENT

5.4 Disallow JavaScript's Ability to Hide the Status Bar

CONFIGURATION MANAGEMENT

5.5 Disable Closing of Windows via Scripts

CONFIGURATION MANAGEMENT

5.6 Block Pop-up Windows

CONFIGURATION MANAGEMENT

5.7 Disable Displaying JavaScript in History URLs

CONFIGURATION MANAGEMENT

6.1 Disallow Credential Storage

CONFIGURATION MANAGEMENT

6.2 Do Not Accept Third Party Cookies

CONFIGURATION MANAGEMENT

6.3 Tracking Protection - privacy.donottrackheader.enabled

CONFIGURATION MANAGEMENT

6.3 Tracking Protection - privacy.donottrackheader.value

CONFIGURATION MANAGEMENT

6.3 Tracking Protection - privacy.trackingprotection.enabled

CONFIGURATION MANAGEMENT

6.3 Tracking Protection - privacy.trackingprotection.pbmode

CONFIGURATION MANAGEMENT

6.4 Set Delay for Enabling Security Sensitive Dialog Boxes

SYSTEM AND INFORMATION INTEGRITY

6.5 Disable Geolocation Serivces

CONFIGURATION MANAGEMENT

7.1 Secure Application Plug-ins

CONFIGURATION MANAGEMENT

7.2 Disabling Auto-Install of Add-ons

CONFIGURATION MANAGEMENT

7.3 Enable Extension Block List

CONFIGURATION MANAGEMENT

7.4 Set Extension Block List Interval

CONFIGURATION MANAGEMENT

7.5 Enable Warning for External Protocol Handler

CONFIGURATION MANAGEMENT

7.6 Disable Popups Initiated by Plugins

CONFIGURATION MANAGEMENT

7.7 Enable Extension Auto Update

SYSTEM AND INFORMATION INTEGRITY

7.8 Enable Extension Update

SYSTEM AND INFORMATION INTEGRITY

7.9 Set Extension Update Interval Time Checks

SYSTEM AND INFORMATION INTEGRITY

8.1 Enable Virus Scanning for Downloads

ACCESS CONTROL