Disable Saved Passwords

An XCCDF Rule

Details
Profiles

Description

Disable by setting ImportSavedPasswords to false in the Chromium policy file.

Rationale

Importing of saved passwords should be disabled as it could lead to unencrypted account passwords stored on the system from another browser to be viewed.

ID: xccdf_org.ssgproject.content_rule_chromium_disable_saved_passwords
Severity: Unknown
References: DTBC0029
Updated: over 1 year ago

Remediation Templates

if ! grep -q ImportSavedPasswords /etc/chromium/policies/managed/chrome_stig_policy.json; then
   sed -i -e '/{/a \  "'ImportSavedPasswords'": 'false',' /etc/chromium/policies/managed/chrome_stig_policy.json
else
   sed -i -e 's/\"'ImportSavedPasswords'.*/\"'ImportSavedPasswords'\": 'false',/g' /etc/chromium/policies/managed/chrome_stig_policy.json
fi

Disable Saved Passwords

Description

Rationale

Remediation Templates

A Shell Script