The macOS system must be configured to disable hot corners.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-252442 | APPL-12-000007 | SV-252442r816140_rule | Medium |
| Description |
|---|
| Although hot corners can be used to initiate a session lock or launch useful applications, they can also be configured to disable an automatic session lock from initiating. Such a configuration introduces the risk that a user might forget to manually lock the screen before stepping away from the computer. |
| STIG | Date |
|---|---|
| Apple macOS 12 (Monterey) Security Technical Implementation Guide | 2022-09-07 |
Details
| Check Text ( C-55898r816138_chk ) |
|---|
| To check if the system is configured to disable hot corners, run the following commands: /usr/sbin/system_profiler SPConfigurationProfileDataType | /usr/bin/grep wvous If the return is null, or does not equal: "wvous-bl-corner = 0 wvous-br-corner = 0; wvous-tl-corner = 0; wvous-tr-corner = 0;" this is a finding. |
| Fix Text (F-55848r816139_fix) |
|---|
| This setting is enforced using the "Custom Policy" configuration profile. |