DISA STIG Mozilla Firefox Windows v6r4

Audit Details

Name: DISA STIG Mozilla Firefox Windows v6r4

Updated: 5/19/2023

Authority: DISA STIG

Plugin: Windows

Revision: 1.3

Estimated Item Count: 52

File Details

Filename: DISA_STIG_Mozilla_Firefox_v6r4_Windows.audit

Size: 113 kB

MD5: 59be11587e424933eafde9591940a06d
SHA256: 1518ec1ab99ad1b090d6e603afbcd5c2dfaec517d1dae931cb229666c80367b6

Audit Items

DescriptionCategories
DISA_STIG_Mozilla_Firefox_v6r4_Windows.audit from DISA Mozilla Firefox v6r4 STIG
FFOX-00-000001 - The installed version of Firefox must be supported.

SYSTEM AND INFORMATION INTEGRITY

FFOX-00-000002 - Firefox must be configured to allow only TLS 1.2 or above.

ACCESS CONTROL

FFOX-00-000003 - Firefox must be configured to ask which certificate to present to a website when a certificate is required.

IDENTIFICATION AND AUTHENTICATION

FFOX-00-000004 - Firefox must be configured to not automatically check for updated versions of installed search plugins.

CONFIGURATION MANAGEMENT

FFOX-00-000005 - Firefox must be configured to not automatically update installed add-ons and plugins.

CONFIGURATION MANAGEMENT

FFOX-00-000006 - Firefox must be configured to not automatically execute or download MIME types that are not authorized for auto-download.

SYSTEM AND INFORMATION INTEGRITY

FFOX-00-000007 - Firefox must be configured to disable form fill assistance.

CONFIGURATION MANAGEMENT

FFOX-00-000008 - Firefox must be configured to not use a password store with or without a master password.

CONFIGURATION MANAGEMENT

FFOX-00-000009 - Firefox must be configured to block pop-up windows - Allowed Sites

CONFIGURATION MANAGEMENT

FFOX-00-000009 - Firefox must be configured to block pop-up windows - Default

CONFIGURATION MANAGEMENT

FFOX-00-000009 - Firefox must be configured to block pop-up windows - Locked

CONFIGURATION MANAGEMENT

FFOX-00-000010 - Firefox must be configured to prevent JavaScript from moving or resizing windows.

CONFIGURATION MANAGEMENT

FFOX-00-000011 - Firefox must be configured to prevent JavaScript from raising or lowering windows.

CONFIGURATION MANAGEMENT

FFOX-00-000013 - Firefox must be configured to disable the installation of extensions.

CONFIGURATION MANAGEMENT

FFOX-00-000014 - Background submission of information to Mozilla must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000015 - Firefox development tools must be disabled.

SYSTEM AND INFORMATION INTEGRITY

FFOX-00-000016 - Firefox must have the DoD root certificates installed.

IDENTIFICATION AND AUTHENTICATION

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Cache

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Cookies

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Downloads

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - FormData

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - History

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - OfflineApps

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Sessions

CONFIGURATION MANAGEMENT

FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - SiteSettings

CONFIGURATION MANAGEMENT

FFOX-00-000018 - Firefox must prevent the user from quickly deleting data.

ACCESS CONTROL

FFOX-00-000019 - Firefox private browsing must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000020 - Firefox search suggestions must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000021 - Firefox autoplay must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000022 - Firefox network prediction must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000023 - Firefox fingerprinting protection must be enabled.

CONFIGURATION MANAGEMENT

FFOX-00-000024 - Firefox cryptomining protection must be enabled.

CONFIGURATION MANAGEMENT

FFOX-00-000025 - Firefox Enhanced Tracking Protection must be enabled.

CONFIGURATION MANAGEMENT

FFOX-00-000026 - Firefox extension recommendations must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000027 - Firefox deprecated ciphers must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000028 - Firefox must not recommend extensions as the user is using the browser.

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets - Highlights

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets - Locked

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets - Pocket

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets - Search

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets - Snippets

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets - SponsoredPocket

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets - SponsoredTopSites

CONFIGURATION MANAGEMENT

FFOX-00-000029 - The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets - TopSites

CONFIGURATION MANAGEMENT

FFOX-00-000033 - Firefox must be configured so that DNS over HTTPS is disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000034 - Firefox accounts must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000036 - Firefox feedback reporting must be disabled.

CONFIGURATION MANAGEMENT

FFOX-00-000037 - Firefox encrypted media extensions must be disabled - Enabled

CONFIGURATION MANAGEMENT

FFOX-00-000037 - Firefox encrypted media extensions must be disabled - Locked

CONFIGURATION MANAGEMENT