8.2 Disable JAR from Opening Unsafe File Types

Information

This feature gives the user the ability to override the restriction on only loading files with application/java-archive or application/x-jar content types.
Enabling the browser to only load application/java-archive or application/x-jar content types mitigates the risk of malware infection and other attack vectors.

Solution

Perform the following procedure:

* Open the mozilla.cfg file in the installation directory with a text editor

* Add the following lines to mozilla.cfg:

lockPref("network.jar.open-unsafe-types", false);

See Also

https://workbench.cisecurity.org/files/1158

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b.

Plugin: Windows

Control ID: 41ea8dd4876df0abb2e1fc44beb89f346aa47b07fe671491bd55306675ac1af6