1.4 Set permissions on mozilla.cfg

Information

Set permissions on mozilla.cfg so that it can only be modified or deleted by an Administrator.
Any users with the ability to modify the mozilla.cfg file can bypass all security configurations by changing the file or deleting it.

Solution

Deny non-administrators the ability to write to mozilla.cfg.

See Also

https://workbench.cisecurity.org/files/1158

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b.

Plugin: Windows

Control ID: 67254ed0540bbb2b4f23b383deb6ea2825165a49a27a8c18687dbeb22f29ec69