Ceisteanna leis an gclib seo á dtaispeáint: Taispeáin gach ceist
  • Cartlannaithe

Firefox update in the enterprise

Multiple banks are removing Firefox due to vulnerabilities. They have found as I have told them multiple times that there is no centralized method to ensuring firefox rem… (tuilleadh eolais)

Multiple banks are removing Firefox due to vulnerabilities. They have found as I have told them multiple times that there is no centralized method to ensuring firefox remains up to date. The admx files from github do set the appautoupdate and backgroundappupdate to a value of 1 to indicate updates but all PCs are at different levels from 90.0 to 95.0 and I've found that even with the auto update switch on that many pcs do not auto update due to users leaving firefox up and ignoring the restart. The autoupdate task runs only if the user is logged on and that allows users to browse with an insecure version of Firefox that can lead to data breaches. CVEs lead to threats to exploit the CVE and that leads to risk that leads to data breaches. These CVEs are tracked by the NVD and this puts security in the hands of users instead of the business and the business has decided to remove firefox from their environments due to this fact.

I know mozilla is NFP but to maintain firefox in an enterprise environment, it need a better update process such as Google Chrome and Edge Chromium.

CVE-2021-38503 CVE-2021-38504 CVE-2021-38505 CVE-2021-38506 CVE-2021-38507 CVE-2021-38508 CVE-2021-38509 CVE-2021-38510

The above are current CVEs of High risk in one environment that has decided firefox will no longer be used.

Asked by bruce92 8 mí ó shin

Last reply by Mike Kaply 5 mhí ó shin

  • Cartlannaithe

group policy

My purpose is deploy specific Certification Authority, which is available in network share, to Firefox by Active Directory group policy (Windows 2012 R2) or alternately t… (tuilleadh eolais)

My purpose is deploy specific Certification Authority, which is available in network share, to Firefox by Active Directory group policy (Windows 2012 R2) or alternately to set 'security. enterprise_roots' to 'enabled' so that Firefox can use Windows Certificate Store. Clients are using Firefox on Windows XP, 7, 10 and consequentially different Firefox version. Can I apply my task ? Suggestions ?

Asked by riccardo.castellani 9 mí ó shin

Last reply by Mike Kaply 9 mí ó shin

  • Cartlannaithe

distributing a customized Firefox in small enterprise

Hello everyone, I got around 50 windows clients to deal with and I wonder how to create a customized version to distribute via Kaspersky Security Center. What I intend i… (tuilleadh eolais)

Hello everyone,

I got around 50 windows clients to deal with and I wonder how to create a customized version to distribute via Kaspersky Security Center.

What I intend is to create an .msi, a folder or something to install. It should include some extensions like ublock or https-everywhere and such. I also like to have a customized theme included.

There are some ressources like AutoConfig or GPO GPO or repackaging installer. But I don't know if the procedures still work since the documents are three years old and, to be honest, I didn't manage to get anything work that way.

Isn't there a simple way to roll out Firefox in a company with some customization?

Thanks.

Asked by MagisterNavis 10 mí ó shin

Last reply by Mike Kaply 10 mí ó shin