UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The OS X system must be configured with automatic actions disabled for video DVDs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-75979 AOSX-12-000105 SV-90667r1_rule Medium
Description
Applications should not be configured to launch automatically when a disk is inserted. This potentially circumvents anti-virus software and allows malicious users to craft disks that can exploit user applications. Disabling Automatic Actions for video DVDs mitigates this risk.
STIG Date
Apple OS X 10.12 Security Technical Implementation Guide 2018-12-24

Details

Check Text ( C-75663r1_chk )
If an approved HBSS DCM/DLP solution is installed, this is not applicable.

To check if the system has the correct setting for video DVDs in the configuration profile, run the following command:

/usr/sbin/system_profiler SPConfigurationProfileDataType | /usr/bin/grep -A 2 'com.apple.digihub.dvd.video.appeared'

If this is not defined or "action" is not set to "1", this is a finding.
Fix Text (F-82617r1_fix)
This setting is enforced using the "Custom Policy" configuration profile.