Mozilla Firefox Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000177
Group -
Firefox must be configured to ask which certificate to present to a website when a certificate is required.
When a website asks for a certificate for user authentication, Firefox must be configured to have the user choose which certificate to present. Websites within DoD require user authentication for a...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group -
Firefox must be configured to block pop-up windows.
Pop-up windows may be used to launch an attack within a new browser window with altered settings. This setting blocks pop-up windows created while the page is loading.Rule Medium Severity -
SRG-APP-000141
Group -
Firefox must be configured to prevent JavaScript from moving or resizing windows.
JavaScript can make changes to the browser's appearance. This activity can help disguise an attack taking place in a minimized background window. Configure the browser setting to prevent scripts on...Rule Medium Severity -
SRG-APP-000141
Group -
Firefox must be configured to prevent JavaScript from raising or lowering windows.
JavaScript can raise and lower browser windows to cause improper input. Configure the browser setting to prevent scripts on visited websites from raising and lowering browser windows.Rule Medium Severity -
SRG-APP-000141
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules