Navigate

Check: FFOX-00-000018

Mozilla Firefox STIG: FFOX-00-000018 (in version v6 r7)

Title

Firefox must prevent the user from quickly deleting data. (Cat II impact)

Discussion

There should not be an option for a user to "forget" work they have done. This is required to meet nonrepudiation controls.

Check Content

Enter "about:policies" in the browser address bar. If "DisableForgetButton" is not displayed under Policy Name or the Policy Value is not "true", this is a finding.

Fix Text

Windows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration >> Administrative Templates >> Mozilla >> Firefox. Policy Name: Disable Forget Button Policy State: Enabled macOS "plist" file: Add the following: <key>DisableForgetButton</key> <true/> Linux "policies.json" file: Add the following in the policies section: "DisableForgetButton": true

Additional Identifiers

Rule ID: SV-251562r1156569_rule

Vulnerability ID: V-251562

Group Title: SRG-APP-000326

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000166	Provide irrefutable evidence that an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
AU-10	Non-repudiation