Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-214813 | AOSX-13-000070 | SV-214813r507075_rule | Medium |
Description |
---|
Use of Wi-Fi to connect to unauthorized networks may facilitate the exfiltration of mission data. Satisfies: SRG-OS-000300-GPOS-00118, SRG-OS-000480-GPOS-00227 |
STIG | Date |
---|---|
Apple OS X 10.13 Security Technical Implementation Guide | 2020-09-11 |
Check Text ( C-16013r397011_chk ) |
---|
If the system requires Wi-Fi to connect to an authorized network, this is not applicable. To check if the Wi-Fi network device is disabled, run the following command: /usr/bin/sudo /usr/sbin/networksetup -listallnetworkservices A disabled device will have an asterisk in front of its name. If the Wi-Fi device is missing this asterisk, this is a finding. |
Fix Text (F-16011r397012_fix) |
---|
To disable the Wi-Fi network device, run the following command: /usr/bin/sudo /usr/sbin/networksetup -setnetworkserviceenabled "Wi-Fi" off |