Join the Mozilla’s Test Days event from Dec 2–8 to test the new Firefox address bar on Firefox Beta 134 and get a chance to win Mozilla swag vouchers! 🎁

Avatar for Username

Zoeken in Support

Vermijd ondersteuningsscams. We zullen u nooit vragen een telefoonnummer te bellen, er een sms naar te sturen of persoonlijke gegevens te delen. Meld verdachte activiteit met de optie ‘Misbruik melden’.

Meer info

Deze conversatie is gearchiveerd. Stel een nieuwe vraag als u hulp nodig hebt.

Plugin Whitelisting

  • 1 antwoord
  • 1 heeft dit probleem
  • 3 weergaven
  • Laatste antwoord van guigs

Curtis Koenig
Curtis Koenig
more options

Some enterprises only want allow the use of plugins and extensions that are on an allow list. This ensures that the administrator knows what plugins are in use so that they can be patched, and allows an amount of functional testing before full deployment. They don't want to be in a state where users install useful-sounding plugins that, for example, sends sensitive data out to the cloud or to a malicious third party. Unfortunately I'm struggling to implement a configuration to deny all plugins and extensions apart from a specified list (which a user can then choose to manually disable or enable). Are the three options below viable or is there some other route:

I can prevent the installation of plugins with this configuration: lockPref("xpinstall.enabled", 0); I can get plugins to default to disabled whenever the browser starts: lockPref("plugin.default.state", 0); lockPref("plugin.defaultXpi.state", 0); I can enable and disable individual plugins: // Enable Flash as it's in a sandbox lockPref("plugin.state.flash", 2); // Disable Java unless required lockPref("plugin.state.java", 0); lockPref("plugin.state.npdeployjava1", 0);

Some enterprises only want allow the use of plugins and extensions that are on an allow list. This ensures that the administrator knows what plugins are in use so that they can be patched, and allows an amount of functional testing before full deployment. They don't want to be in a state where users install useful-sounding plugins that, for example, sends sensitive data out to the cloud or to a malicious third party. Unfortunately I'm struggling to implement a configuration to deny all plugins and extensions apart from a specified list (which a user can then choose to manually disable or enable). Are the three options below viable or is there some other route: I can prevent the installation of plugins with this configuration: lockPref("xpinstall.enabled", 0); I can get plugins to default to disabled whenever the browser starts: lockPref("plugin.default.state", 0); lockPref("plugin.defaultXpi.state", 0); I can enable and disable individual plugins: // Enable Flash as it's in a sandbox lockPref("plugin.state.flash", 2); // Disable Java unless required lockPref("plugin.state.java", 0); lockPref("plugin.state.npdeployjava1", 0);

Alle antwoorden (1)

guigs
guigs
more options

Please also see: http://kb.mozillazine.org/Locking_preferences Make sure it is not obsolete: https://developer.mozilla.org/en-US/d.../Locked_config_settings

What trouble are you running into specifically here?