III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox fingerprinting protection must be enabled.
<VulnDiscussion>The Content Blocking/Tracking Protection feature stops Firefox from loading content from malicious sites. The content might b...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox cryptomining protection must be enabled.
<VulnDiscussion>The Content Blocking/Tracking Protection feature stops Firefox from loading content from malicious sites. The content might b...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox Enhanced Tracking Protection must be enabled.
<VulnDiscussion>Tracking generally refers to content, cookies, or scripts that can collect browsing data across multiple sites. It is detrim...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox extension recommendations must be disabled.
<VulnDiscussion>The Recommended Extensions program makes it easier for users to discover extensions that have been reviewed for security, fun...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox deprecated ciphers must be disabled.
<VulnDiscussion>A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient ...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox must not recommend extensions as the user is using the browser.
<VulnDiscussion>The Recommended Extensions program recommends extensions to users as they surf the web. The user must not be encouraged to i...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
The Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets.
<VulnDiscussion>The New Tab page by default shows a list of built-in top sites, as well as the top sites the user has visited. It is detrime...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox must be configured so that DNS over HTTPS is disabled.
<VulnDiscussion>DNS over HTTPS has generally not been adopted in the DoD. DNS is tightly controlled. It is detrimental for applications to p...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox accounts must be disabled.
<VulnDiscussion>Disable Firefox Accounts integration (Sync). It is detrimental for applications to provide, or install by default, function...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Firefox feedback reporting must be disabled.
<VulnDiscussion>Disable the menus for reporting sites (Submit Feedback, Report Deceptive Site). It is detrimental for applications to provi...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.