7.2 Disabling Auto-Install of Add-ons


This configuration will show how to ensure that no website is allowed to automatically install Add-Ons. Also, it will list how to ensure that proper notifications are shown when installing Add-Ons.
Add-Ons are extensions of the browser that add new functionality to Firefox or change its appearance. These run in a user s session allowing them do manipulate data and the behavior of the way Firefox interacts with other application and user commands. If malicious Add-Ons are installed automatically, a user s security could be completely compromised.


Perform the following procedure:

* Open the mozilla.cfg file in the installation directory with a text editor

* Add the following lines to mozilla.cfg:

lockPref("xpinstall.whitelist.required", true);

See Also


Item Details


References: 800-53|CM-7(4)

Plugin: Unix

Control ID: e572f29d58dd6b55c4e3c09541c8bdb7a153b10d89c358b91c6f2732cd4a5392