Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Approved plugins will be whitelisted.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36603 | DTBC-0047 | SV-48107r1_rule | ECSC-1 | Medium |
| Description |
|---|
| Allowing only approved plugins will reduce the attack surface of Google Chrome. It will also ensure unused features are turned off. |
| STIG | Date |
|---|---|
| Google Chrome v24 Windows STIG | 2013-02-21 |
Details
| Check Text ( C-44839r1_chk ) |
|---|
| Universal method(Requires Chrome Browser v15 or later): 1. In the omnibox(address bar) type chrome://policy 2. If the policy "AllowPlugins" is not shown or is not set to "Shockwave Flash", "Chrome PDF Viewer", "Google Earth Plugin", "Silverlight", and "Java(TM)", then this is a finding. Windows: Start regedit Navigate to HKLM\Software\Policies\Google\Chrome\PluginsAllowedForUrls If this key does not exist or is not set to "Shockwave Flash", "Chrome PDF Viewer", "Google Earth Plugin", "Silverlight", and "Java(TM)" this is a finding. |
| Fix Text (F-41245r1_fix) |
|---|
| Valid for Chrome Browser version 11 or later. Windows Registry: Registry Path: HKLM\Software\Policies\Google\Chrome\ Value Name: PluginsAllowedForUrls Value Type: List of strings Value Data: "Shockwave Flash", "Chrome PDF Viewer", "Google Earth Plugin", "Silverlight", and "Java(TM)" Windows group policy: Policy Path: Computer Configuration\Administrative Templates\Google\Google Chrome\Content Settings\ Policy Name: "Allow plugins on these sites" Policy State: Enabled Policy Value: "Shockwave Flash", "Chrome PDF Viewer", "Google Earth Plugin", "Silverlight", and "Java(TM)", |