Generated by the MozillaFirefoxAudit Module by FB Pro GmbH. Get it in the Audit Test Automation Package.
Based on CIS Mozilla Firefox 38 ESR Benchmark v1.0.0 - 2015-12-31, DISA Mozilla FireFox Security Technical Implementation Guide V4R24 2019-01-25.
This report was generated at 04/03/2019 02:57:42 on DESKTOP-O8FO61D.
| Hostname | DESKTOP-O8FO61D |
|---|---|
| Build Number | 17763 |
| Free disk space(GB) | 114.1 |
| Operating System | Microsoft Windows 10 Enterprise Evaluation |
| Free physical memory (GB) | 0.130 |
Click the link(s) below for quick access to a report section.
This section contains all CIS benchmarks
| Id | Task | Message | Audit |
|---|---|---|---|
| 1.1 | Create local-settings.js file | Compliant | True |
| 1.3 | Create mozilla.tt.cfg file | Compliant | True |
| Id | Task | Message | Audit |
|---|---|---|---|
| 2.1 | Enable Automatic Updates | Compliant. | True |
| 2.2 | Enable Auto-Notification of Outdated Plugins | Compliant. | True |
| 2.3 | Enable Information Bar for Outdated Plugins | Compliant. | True |
| 2.4 | Set Update Interval Time Checks | Compliant. | True |
| 2.5 | Set Update Wait Time Prompt | Compliant. | True |
| 2.6 | Ensure Update-related UI Components are Displayed | Compliant. | True |
| 2.7 | Set Search Provider Update Behavior | Compliant. | True |
| 3.2 | Do Not Send Cross SSLTLS Referrer Header | Compliant. | True |
| 3.3 | Disable NTLM v1 | Compliant. | True |
| 3.4 | Enable Warning For Phishy URLs | Compliant. | True |
| 3.5 | Enable IDN Show Punycode | Compliant. | True |
| 3.6 | Set File URI Origin Policy | Compliant. | True |
| 3.7 | Disable Cloud Sync | Compliant. | True |
| 3.8 | Disable WebRTC | Compliant. | True |
| 4.1 | Set SSL Override Behavior | Compliant. | True |
| 4.2 | Set Security TLS Version Maximum | Compliant. | True |
| 4.3 | Set Security TLS Version Minimum | Compliant. | True |
| 4.4 | Set OCSP Use Policy | Compliant. | True |
| 4.5 | Block Mixed Active Content | Compliant. | True |
| 4.6 | Set OCSP Response Policy | Compliant. | True |
| 5.1 | Disallow JavaScripts Ability to Change the Status Bar Text | Compliant. | True |
| 5.2 | Disable Scripting of Plugins by JavaScript | Compliant. | True |
| 5.3 | Disallow JavaScripts Ability to Hide the Address Bar | Compliant. | True |
| 5.4 | Disallow JavaScripts Ability to Hide the Status Bar | Compliant. | True |
| 5.5 | Disable Closing of Windows via Scripts | Compliant. | True |
| 5.6 | Block Pop-up Windows | Compliant. | True |
| 5.7 | Disable Displaying JavaScript in History URLs | Compliant. | True |
| 6.1 | Disallow Credential Storage | Compliant. | True |
| 6.2 | Do Not Accept Third Party Cookies | Compliant. | True |
| 6.3 | Tracking Protection | Missing lockprefs: lockPref("privacy.donottrackheader.value", 1). | False |
| 6.4 | Set Delay for Enabling Security Sensitive Dialog Boxes | Compliant. | True |
| 6.5 | Disable Geolocation Serivces | Missing lockprefs: lockPref("geo.enabled", False). | False |
| 7.1 | Secure Application Plug-ins | Compliant. | True |
| 7.2 | Disabling Auto-Install of Add-ons | Compliant. | True |
| 7.3 | Enable Extension Block List | Compliant. | True |
| 7.4 | Set Extension Block List Interval | Compliant. | True |
| 7.5 | Enable Warning for External Protocol Handler | Compliant. | True |
| 7.6 | Disable Popups Initiated by Plugins | Compliant. | True |
| 7.7 | Enable Extension Auto Update | Compliant. | True |
| 7.8 | Enable Extension Update | Compliant. | True |
| 7.9 | Set Extension Update Interval Time Checks | Compliant. | True |
| 8.1 | Enable Virus Scanning for Downloads | Compliant. | True |
| 8.2 | Disable JAR from Opening Unsafe File Types | Compliant. | True |
| 8.3 | Block Reported Web Forgeries | Compliant. | True |
| 8.4 | Block Reported Attack Sites | Compliant. | True |
This section contains all DISA recommendations
| Id | Task | Message | Audit |
|---|---|---|---|
| DTBF030 | Firewall traversal from remote host must be disabled. | Compliant. | True |
| DTBF050 | FireFox is configured to ask which certificate to present to a web site when a certificate is required. | Compliant. | True |
| DTBF085 | Firefox automatically checks for updated version of installed Search plugins. | Compliant. | True |
| DTBF090 | Firefox automatically updates installed add-ons and plugins. | Compliant. | True |
| DTBF105 | Network shell protocol is enabled in FireFox. | Compliant. | True |
| DTBF140 | Firefox formfill assistance option is disabled. | Compliant. | True |
| DTBF150 | Firefox is configured to autofill passwords. | Compliant. | True |
| DTBF181 | FireFox is configured to allow JavaScript to move or resize windows. | Compliant. | True |
| DTBF183 | Firefox is configured to allow JavaScript to disable or replace context menus. | Compliant. | True |
| DTBF190 | Background submission of information to Mozilla must be disabled. | Compliant. | True |