8.1 Block Reported Attack Sites

Information

This setting can be configured to alert a user if they are visiting a known malicious website.

Rationale:

Enabling this feature will decrease the probability of a user falling victim to a known malicious web site.

Impact:

None - This is the default behavior.

Solution

To establish the recommended configuration, set browser.safebrowsing.malware.enabled to true:

Type about:config in the address bar

Type browser.safebrowsing.malware.enabled in the filter

Ensure the setting is set as prescribed.

OR

Open the mozilla.cfg file in the installation directory with a text editor

Add the following lines to mozilla.cfg:

lockPref('browser.safebrowsing.malware.enabled', true);

Default Value:

True

See Also

https://workbench.cisecurity.org/files/4299

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-3

Plugin: Windows

Control ID: 5f3e9e39771ed6d65a6518c378d5e4ec144bdfc78d5343420bc55d2b4f7c0241