Disable Outdated Plugins

An XCCDF Rule

Details
Profiles

Description

Outdated plugins should be disabled by setting AllowOutdatedPlugins to false in the Chromium policy file.

Rationale

Running outdated plugins could lead to system compromise through the use of known exploits. Having plugins updated to the most current version ensures the smallest attack surfuce possible.

ID: xccdf_org.ssgproject.content_rule_chromium_disable_outdated_plugins
Severity: Unknown
References: DTBC0013
Updated: over 1 year ago

Remediation Templates

if ! grep -q AllowOutdatedPlugins /etc/chromium/policies/managed/chrome_stig_policy.json; then
   sed -i -e '/{/a \  "'AllowOutdatedPlugins'": 'false',' /etc/chromium/policies/managed/chrome_stig_policy.json
else
   sed -i -e 's/\"'AllowOutdatedPlugins'.*/\"'AllowOutdatedPlugins'\": 'false',/g' /etc/chromium/policies/managed/chrome_stig_policy.json
fi

Disable Outdated Plugins

Description

Rationale

Remediation Templates

A Shell Script