Require Outdated Plugins to be Authorized

An XCCDF Rule

Details
Profiles

Description

Chromium should prompt users for authorization to run outdated plugins. This can be enabled by setting AlwaysAuthorizePlugins to false in the Chromium policy file.

Rationale

Outdated plugins can compromise security and should request authorization from the user before running.

ID: xccdf_org.ssgproject.content_rule_chromium_plugins_require_authorization
Severity: Unknown
References: DTBC0014
Updated: over 1 year ago

Remediation Templates

if ! grep -q AlwaysAuthorizePlugins /etc/chromium/policies/managed/chrome_stig_policy.json; then
   sed -i -e '/{/a \  "'AlwaysAuthorizePlugins'": 'false',' /etc/chromium/policies/managed/chrome_stig_policy.json
else
   sed -i -e 's/\"'AlwaysAuthorizePlugins'.*/\"'AlwaysAuthorizePlugins'\": 'false',/g' /etc/chromium/policies/managed/chrome_stig_policy.json
fi

Require Outdated Plugins to be Authorized

Description

Rationale

Remediation Templates

A Shell Script