Firefox updates and PolicyPak STIGs

1. Firefox updates: Available now.

If you have rolled out PolicyPak CSE 712, there are two “hidden” features which are already there, but the Firefox Pak itself wasn’t ready until now. So, available now are the following two added features to Firefox:

  • Managing Bookmarks
  • Managing Pop-Ups and Permissions

You can see the two how-to videos on our Firefox specific page.

2. New free thing we’re doing: STIGs

Sometimes we get a call here at PolicyPak Central, and someone asks us… “Hey, I see you’ve got a zillion paks. That’s awesome. Does any ADVICE come with how to set the settings within those Paks?”
Our answer has been: “We’re experts at delivering and enforcing settings… but we cannot know precisely what would be best to secure your world, so it’s hard to give you specific advice.”
So it turns out that the US Government has already “rounded up” a bunch of settings for applications, which, when applied, will make them more secure. These are called STIGs (Security Technical Implementation Guides.)

And, no, it has nothing to do with that weird helmet dude on the TV show Top Gear.

What we’ve done (and will continue to do) is take this security advice and pre-make XML files which you can then IMPORT into PolicyPak Application Manager.

So if you want to take the US Government’s advice on how to make, say, Java or Firefox more secure, you can simply download the latest Pak, then download the STIG XML, and import it. And … bingo. You’re now setting the settings you want.

Bonus: If you use the PolicyPak Group Policy Compliance reporter (which you get for $0 for PolicyPak Application Manager-delivered settings), you can VERIFY those settings actually made it to your target machines.

I have a demonstration of how to use PolicyPak STIGs: https://www.policypak.com/video/policypak-import-stig-files-to-make-your-applications-more-secure.html

And, you can see how to use the PolicyPak GPCR here: https://www.policypak.com/products/policypak-compliance-reporter.html
(Note: Target machine must be running CSE 712 and v2 license to use free PPGPCR reporting with PolicyPak Application Manager.)