- CheckMates
- :
- Products
- :
- General Topics
- :
- Block browser extensions on a CheckPoint firewall
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Block browser extensions on a CheckPoint firewall
A while ago, I was thinking about how to block browser extensions on a CheckPoint firewall. Today's news, "16 Chrome Extensions Hacked in Large-Scale Credential Theft Scheme," reminded me that controlling browser plugins can be an important security measure for organizations. Has anyone tried blocking browser extensions with CheckPoint? Any ideas or suggestions?
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
No there is no way on a firewall to do this.
Best approach is:
https://support.google.com/chrome/a/answer/9296680?hl=en
There are more ways like inTune / GPO etc. But from firewall point of view I am not aware of an option to do this.
If you like this post please give a thumbs up(kudo)! 🙂
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
No there is no way on a firewall to do this.
Best approach is:
https://support.google.com/chrome/a/answer/9296680?hl=en
There are more ways like inTune / GPO etc. But from firewall point of view I am not aware of an option to do this.
If you like this post please give a thumbs up(kudo)! 🙂
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Best way I can think of is to block QUIC protocol.
Andy
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You can probably block chromewebstore.google.com with the firewall, though it may require HTTPS Inspection to be enabled.
The real solution is to implement this via GPO/MDM or via Google Enterprise.
