Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Firefox is not configured to allow use of TLS.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-15983 | DTBF030 | SV-16925r2_rule | ECSC-1 | Medium |
| Description |
|---|
| DoD implementations of SSL must use TLS in accordance with the Network Infrastructure STIG. Earlier versions of SSL have known security vulnerabilities and are not authorized for use in DOD. |
| STIG | Date |
|---|---|
| Mozilla Firefox | 2015-12-30 |
Details
| Check Text ( C-16610r2_chk ) |
|---|
| Open a browser window, type "about:config" in the address bar. Verify Preference Name "security.enable_tls" is set to the value "true" and locked. Criteria: If the parameter is set incorrectly, then this is a finding. If the setting is not locked, then this is a finding. Note: Newer versions may not show "security.enable_tls" and may be replaced with “security.tls.version.max” instead. Open a browser window, type "about:config" in the address bar, then navigate to the setting for Preference Name "security.tls.version.max" and set the value to “3” and locked. Criteria: If the value of "security.tls.version.max" is “3”, this is not a finding. If the value is locked, this is not a finding. |
| Fix Text (F-15984r2_fix) |
|---|
| Ensure the preference value of "security.enable_tls" is set to "true" and locked. For newer versions, set the preference “security.tls.version.max” to “3” and lock using the Mozilla.cfg file. |