The macOS system must be configured to disable hot corners.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-225124 | AOSX-15-000007 | SV-225124r610901_rule | Medium |
| Description |
|---|
| Although hot corners can be used to initiate a session lock or launch useful applications, they can also be configured to disable an automatic session lock from initiating. Such a configuration introduces the risk that a user might forget to manually lock the screen before stepping away from the computer. |
| STIG | Date |
|---|---|
| Apple OS X 10.15 (Catalina) Security Technical Implementation Guide | 2022-06-06 |
Details
| Check Text ( C-26823r467540_chk ) |
|---|
| To check if the system is configured to disable hot corners, run the following commands: /usr/sbin/system_profiler SPConfigurationProfileDataType | /usr/bin/grep wvous If the return is null or does not equal the following, this is a finding: "wvous-bl-corner = 0 wvous-br-corner = 0; wvous-tl-corner = 0; wvous-tr-corner = 0;" |
| Fix Text (F-26811r467541_fix) |
|---|
| This setting is enforced using the "Custom Policy" configuration profile. |