Details
This feature disables the ability to view HTTP content such as JavaScript, CSS, objects, and xhr requests.
Blocking active mixed content minimizes the risk of man-in-the-middle attacks.
Solution
Perform the following procedure:
* Open the mozilla.cfg file in the installation directory with a text editor
* Add the following lines to mozilla.cfg:
lockPref(“security.mixed_content.block_active_content”, true)
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.