Details
This feature NT Lan Manager (NTLM) v1 protocol to be used for authentication to resources that request this authentication type.
NTLM v1 contains cryptographic weaknesses that can be easily exploited to obtain user credentials.
Solution
Perform the following procedure:
* Open the mozilla.cfg file in the installation directory with a text editor
* Add the following lines to mozilla.cfg:
lockPref(“network.auth.force-generic-ntlm-v1”, false);
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication.This control applies to the following type of system Unix.