FFOX-00-000017 – Firefox must be configured to not delete data upon shutdown – History

Details

For diagnostic purposes, data must remain behind when the browser is closed. This is required to meet non-repudiation controls.

Solution

Windows group policy:
1. Open the group policy editor tool with ‘gpedit.msc’.
2. Navigate to Policy Path: Computer ConfigurationAdministrative TemplatesMozillaFirefoxClear data when browser is closed
Policy Name: Cache, Cookies, Download History, Form & Search History, Browsing History, Active Logins, Site Preferences, Offline Website Data
Policy State: Disabled
Policy Name: Locked
Policy State: Enabled

macOS ‘plist’ file:
Add the following:
SanitizeOnShutdown

Cache

Cookies

Downloads

FormData

History

Sessions

SiteSettings

OfflineApps

Locked

Linux ‘policies.json’ file:
Add the following in the policies section:
‘SanitizeOnShutdown’: {
‘Cache’: false,
‘Cookies’: false,
‘Downloads’: false,
‘FormData’: false,
‘History’: false,
‘Sessions’: false,
‘SiteSettings’: false,
‘OfflineApps’: false,
‘Locked’: true
}

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MOZ_Firefox_V6R1_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.

References

800-53|AC-24(2)
CAT|II
CCI|CCI-002355
Rule-ID|SV-251561r807155_rule
STIG-ID|FFOX-00-000017
Vuln-ID|V-251561

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles