V-251573
CAT IIThe Firefox New Tab page must not show Top Sites, Sponsored Top Sites, Pocket Recommendations, Sponsored Pocket Stories, Searches, Highlights, or Snippets.
- Ships Affected
- 1
- Total Findings
- 4
- Open
- 0
- Closed
- 4
Check Text
Type "about:policies" in the browser address bar.
If "FirefoxHome" is not displayed under Policy Name or the Policy Value does not have "Search" with a value of "false", this is a finding.
If "FirefoxHome" is not displayed under Policy Name or the Policy Value does not have "TopSites" with a value of "false", this is a finding.
If "FirefoxHome" is not displayed under Policy Name or the Policy Value does not have "SponsoredTopSites" with a value of "false", this is a finding.
If "FirefoxHome" is not displayed under Policy Name or the Policy Value does not have "Pocket" with a value of "false", this is a finding.
If "FirefoxHome" is not displayed under Policy Name or the Policy Value does not have "SponsoredPocket" with a value of "false", this is a finding.
If "FirefoxHome" is not displayed under Policy Name or the Policy Value does not have "Highlights" with a value of "false", this is a finding.
If "FirefoxHome" is not displayed under Policy Name or the Policy Value does not have "Snippets" with a value of "false", this is a finding.
If "FirefoxHome" is not displayed under Policy Name or the Policy Value does not have "Locked" with a value of "true", this is a finding.
Fix Text
Windows group policy:
1. Open the group policy editor tool with "gpedit.msc".
2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox
Policy Name: Customize Firefox Home
Policy State: Enabled
Policy Value: Uncheck "Search"
Policy Value: Uncheck "Top Sites"
Policy Value: Uncheck "Sponsored Top Sites"
Policy Value: Uncheck "Recommended by Pocket"
Policy Value: Uncheck "Sponsored Pocket Stories"
Policy Value: Uncheck "Download History"
Policy Value: Uncheck "Snippets"
Policy Value: Check "Do not allow settings to be changed"
macOS "plist" file:
Add the following:
<key>FirefoxHome</key>
<dict>
<key>Search</key>
<false/>
<key>TopSites</key>
<false/>
<key>SponsoredTopSites</key>
<false/>
<key>Pocket</key>
<false/>
<key>SponsoredPocket</key>
<false/>
<key>Highlights</key>
<false/>
<key>Snippets</key>
<false/>
<key>Locked</key>
<true/>
</dict>
Linux "policies.json" file:
Add the following in the policies section:
"FirefoxHome": {
"Search": false,
"TopSites": false,
"SponsoredTopSites": false,
"Pocket": false,
"SponsoredPocket": false,
"Highlights": false,
"Snippets": false,
"locked": true
}
STIG Reference
- STIG
- Mozilla Firefox Security Technical Implementation Guide
- Version
- 6
- Release
- 7
- Rule ID
- SV-251573r960963_rule
All Occurrences
This vulnerability appears on 1 ship(s)
| Ship | Hull # | Source File | Status | Assigned To | Scan Date | Actions |
|---|---|---|---|---|---|---|
| USNS MONTFORD POINT | T-ESD-1 | MONT-SW-89134_Firefox_V6R6_20251217-201244.ckl | Unassigned | 2026-03-04T15:25:41.899130 | View in Context | |
| USNS MONTFORD POINT | T-ESD-1 | MONT-SW-89108_Firefox_V6R6_20251217-203042.ckl | Unassigned | 2026-03-04T15:25:15.868210 | View in Context | |
| USNS MONTFORD POINT | T-ESD-1 | _Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_Firefox_V6R6_20251023-141154.ckl | Unassigned | 2026-01-14T12:57:27.870047 | View in Context | |
| USNS MONTFORD POINT | T-ESD-1 | _Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_Firefox_V6R6_20251023-142444.ckl | Unassigned | 2026-01-14T12:57:25.596878 | View in Context |