Mozilla Firefox Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Firefox search suggestions must be disabled.
Search suggestions must be disabled as this could lead to searches being conducted that were never intended to be made.Rule Medium Severity -
SRG-APP-000141
Group -
Firefox autoplay must be disabled.
Autoplay allows the user to control whether videos can play automatically (without user consent) with audio content. The user must be able to select content that is run within the browser window.Rule Low Severity -
SRG-APP-000141
Group -
Firefox network prediction must be disabled.
If network prediction is enabled, requests to URLs are made without user consent. The browser should always make a direct DNS request without prefetching occurring.Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group -
Firefox cryptomining protection must be enabled.
The Content Blocking/Tracking Protection feature stops Firefox from loading content from malicious sites. The content might be a script or an image, for example. If a site is on one of the tracker ...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group -
Firefox extension recommendations must be disabled.
The Recommended Extensions program makes it easier for users to discover extensions that have been reviewed for security, functionality, and user experience. Allowed extensions are to be centrally ...Rule Medium Severity -
SRG-APP-000141
Group -
Firefox deprecated ciphers must be disabled.
A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the poss...Rule Medium Severity -
SRG-APP-000141
Group -
Firefox must not recommend extensions as the user is using the browser.
The Recommended Extensions program recommends extensions to users as they surf the web. The user must not be encouraged to install extensions from the websites they visit. Allowed extensions are t...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group -
Firefox must be configured so that DNS over HTTPS is disabled.
DNS over HTTPS has generally not been adopted in the DoD. DNS is tightly controlled. It is detrimental for applications to provide, or install by default, functionality exceeding requirements or m...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.