Wi-Fi support software must be disabled.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-67497 | AOSX-11-000070 | SV-81987r1_rule | Medium |
| Description |
|---|
| Use of Wi-Fi to connect to unauthorized networks may facilitate the exfiltration of mission data. |
| STIG | Date |
|---|---|
| Apple OS X 10.11 Security Technical Implementation Guide | 2018-01-04 |
Details
| Check Text ( C-68061r1_chk ) |
|---|
| If the system requires Wi-Fi to connect to an authorized network, this is not applicable. To check if the Wi-Fi network device is disabled, run the following command: /usr/bin/sudo /usr/sbin/networksetup -listallnetworkservices A disabled device will have an asterisk in front of its name. If the Wi-Fi device is missing this asterisk, this is a finding. |
| Fix Text (F-73611r1_fix) |
|---|
| To disable the Wi-Fi network device, run the following command: /usr/bin/sudo /usr/sbin/networksetup -setnetworkserviceenabled "Wi-Fi" off |