FFOX-00-000017 - Firefox must be configured to not delete data upon shutdown - Locked

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

For diagnostic purposes, data must remain behind when the browser is closed. This is required to meet non-repudiation controls.

Solution

Windows group policy:
1. Open the group policy editor tool with 'gpedit.msc'.
2. Navigate to Policy Path: Computer ConfigurationAdministrative TemplatesMozillaFirefoxClear data when browser is closed
Policy Name: Cache, Cookies, Download History, Form & Search History, Browsing History, Active Logins, Site Preferences, Offline Website Data
Policy State: Disabled
Policy Name: Locked
Policy State: Enabled

macOS 'plist' file:
Add the following:
<key>SanitizeOnShutdown</key>
<dict>
<key>Cache</key>
<false/>
<key>Cookies</key>
<false/>
<key>Downloads</key>
<false/>
<key>FormData</key>
<false/>
<key>History</key>
<false/>
<key>Sessions</key>
<false/>
<key>SiteSettings</key>
<false/>
<key>OfflineApps</key>
<false/>
<key>Locked</key>
<true/>
</dict>

Linux 'policies.json' file:
Add the following in the policies section:
'SanitizeOnShutdown': {
'Cache': false,
'Cookies': false,
'Downloads': false,
'FormData': false,
'History': false,
'Sessions': false,
'SiteSettings': false,
'OfflineApps': false,
'Locked': true
}

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MOZ_Firefox_V6R2_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000381, Rule-ID|SV-252881r820757_rule, STIG-ID|FFOX-00-000017, Vuln-ID|V-252881

Plugin: Unix

Control ID: 1c61ea619b97d9f0cd945dc5d2a37536624dc69c62f233dc08093f8a42972c6c