Upstream STIG for Google Chromium
Rules and Groups employed by this XCCDF Profile
-
Chromium
Chromium is an open-source web browser, powered by WebKit (Blink), and developed by Google. Web browsers such as Chromium are used for a number of ...Group -
Disable All Extensions by Default
Extensions are developed by third party sources and are designed to extend Google Chromium's functionality. As an extension can be made by anyone,...Rule Unknown Severity -
Prevent Desktop Notifications
Chromium by default allows websites to display notifications on the desktop. To disable this setting, set <code>DefaultNotificationsSetting</code> ...Rule Unknown Severity -
Enable Online OCSP/CRL Certificate Checks
Certificates can become compromised, and Chromium should check that the certificates in its store are valid by setting <code>EnableOnlineRevocation...Rule Unknown Severity -
Block Plugins by Default
By default, websites are allowed to automatically run plugins. Users should be prompted to allow plugins to execute plugins by setting <code>Defaul...Rule Unknown Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules