III - Administrative Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000456
Group -
The installed version of Firefox must be supported.
Using versions of an application that are not supported by the vendor is not permitted. Vendors respond to security flaws with updates and patches. These updates are not available for unsupported v...Rule High Severity -
SRG-APP-000560
Group -
Firefox must be configured to allow only TLS 1.2 or above.
Use of versions prior to TLS 1.2 are not permitted. SSL 2.0 and SSL 3.0 contain a number of security flaws. These versions must be disabled in compliance with the Network Infrastructure and Secure ...Rule High Severity -
SRG-APP-000177
Group -
Firefox must be configured to ask which certificate to present to a website when a certificate is required.
When a website asks for a certificate for user authentication, Firefox must be configured to have the user choose which certificate to present. Websites within DoD require user authentication for a...Rule Medium Severity -
SRG-APP-000141
Group -
Firefox must be configured to not automatically check for updated versions of installed search plugins.
Updates must be controlled and installed from authorized and trusted servers. This setting overrides a number of other settings that may direct the application to access external URLs.Rule Medium Severity -
SRG-APP-000141
Group -
Firefox must be configured to not automatically update installed add-ons and plugins.
Set this to false to disable checking for updated versions of the Extensions/Themes. Automatic updates from untrusted sites puts the enclave at risk of attack and may override security settings.Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.