DISA STIG Mozilla Firefox Windows v6r2

Audit Details

Name: DISA STIG Mozilla Firefox Windows v6r2

Updated: 5/12/2022

Authority: DISA STIG

Plugin: Windows

Revision: 1.0

Estimated Item Count: 50

File Details

Filename: DISA_STIG_Mozilla_Firefox_v6r2_Windows.audit

Size: 105 kB

MD5: 04ca3ff5e2b8829af710c94769707eab
SHA256: 39de70b5fcd672ad43827aab66aed19f4e26b94fa9cd1e9b4ca8c856ba03d8e6

Audit Items

DescriptionCategories
DISA_STIG_Mozilla_Firefox_v6r2_Windows.audit from DISA Mozilla Firefox v6r2 STIG
FFOX-00-000001 - The installed version of Firefox must be supported.

SYSTEM AND INFORMATION INTEGRITY

FFOX-00-000002 - Firefox must be configured to allow only TLS 1.2 or above.

ACCESS CONTROL

FFOX-00-000003 - Firefox must be configured to ask which certificate to present to a website when a certificate is required.

IDENTIFICATION AND AUTHENTICATION

FFOX-00-000004 - Firefox must be configured to not automatically check for updated versions of installed search plugins.

CONFIGURATION MANAGEMENT

FFOX-00-000005 - Firefox must be configured to not automatically update installed add-ons and plugins.

CONFIGURATION MANAGEMENT

FFOX-00-000006 - Firefox must be configured to not automatically execute or download MIME types that are not authorized for auto-download.

SYSTEM AND INFORMATION INTEGRITY

FFOX-00-000007 - Firefox must be configured to disable form fill assistance.

CONFIGURATION MANAGEMENT

FFOX-00-000008 - Firefox must be configured to not use a password store with or without a master password.

CONFIGURATION MANAGEMENT

FFOX-00-000009 - Firefox must be configured to block pop-up windows. - Allowed Sites

CONFIGURATION MANAGEMENT

FFOX-00-000009 - Firefox must be configured to block pop-up windows. - Default

CONFIGURATION MANAGEMENT

FFOX-00-000009 - Firefox must be configured to block pop-up windows. - Locked

CONFIGURATION MANAGEMENT

FFOX-00-000010 - Firefox must be configured to prevent JavaScript from moving or resizing windows.

CONFIGURATION MANAGEMENT

FFOX-00-000011 - Firefox must be configured to prevent JavaScript from raising or lowering windows.

CONFIGURATION MANAGEMENT

FFOX-00-000013 - Firefox must be configured to disable the installation of extensions.

CONFIGURATION MANAGEMENT

FFOX-00-000014 - Background submission of information to Mozilla must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000015 - Firefox development tools must be disabled.

SYSTEM AND INFORMATION INTEGRITY

FFOX-00-000016 - Firefox must have the DoD root certificates installed.

IDENTIFICATION AND AUTHENTICATION

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Cache

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Cookies

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Downloads

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - FormData

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - History

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - OfflineApps

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Sessions

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - SiteSettings

CONFIGURATION MANAGEMENT

FFOX-00-000018 - Firefox must prevent the user from quickly deleting data.

ACCESS CONTROL

FFOX-00-000019 - Firefox private browsing must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000020 - Firefox search suggestions must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000021 - Firefox autoplay must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000022 - Firefox network prediction must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000023 - Firefox fingerprinting protection must be enabled.

CONFIGURATION MANAGEMENT

FFOX-00-000024 - Firefox cryptomining protection must be enabled.

CONFIGURATION MANAGEMENT

FFOX-00-000025 - Firefox Enhanced Tracking Protection must be enabled.

CONFIGURATION MANAGEMENT

FFOX-00-000026 - Firefox extension recommendations must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000027 - Firefox deprecated ciphers must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000028 - Firefox must not recommend extensions as the user is using the browser.

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets. - Highlights

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets. - Locked

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets. - Pocket

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets. - Search

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets. - Snippets

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets. - SponsoredPocket

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets. - SponsoredTopSites

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets. - TopSites

CONFIGURATION MANAGEMENT

FFOX-00-000033 - Firefox must be configured so that DNS over HTTPS is disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000034 - Firefox accounts must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000036 - Firefox feedback reporting must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000037 - Firefox encrypted media extensions must be disabled - Enabled

CONFIGURATION MANAGEMENT

FFOX-00-000037 - Firefox encrypted media extensions must be disabled - Locked

CONFIGURATION MANAGEMENT