Enable Plugins for Only Approved URLs

An XCCDF Rule

Details
Profiles
Prose

Description

In some cases, plugins utilized by organizationally approved websites may be allowed to be used by those websites, configure the approved URLs allowed to run plugins by setting PluginsAllowedForUrls to organizationally approved URLs in the Chromium policy file. If there are no approved URLs, this should be set to none

Rationale

Only approved plugins for approved sites should be allowed to be utilized.

ID: xccdf_org.ssgproject.content_rule_chromium_whitelist_plugin_urls
Severity: Unknown
References: DTBC0051
Updated: about 1 year ago






if ! grep -q PluginsAllowedForUrls /etc/chromium/policies/managed/chrome_stig_policy.json; then
   sed -i -e '/{/a \  "'PluginsAllowedForUrls'": 'none',' /etc/chromium/policies/managed/chrome_stig_policy.json
else
   sed -i -e 's/\"'PluginsAllowedForUrls'.*/\"'PluginsAllowedForUrls'\": 'none',/g' /etc/chromium/policies/managed/chrome_stig_policy.json
fi

Enable Plugins for Only Approved URLs

Description

Rationale

Remediation - Shell Script