UCF STIG Viewer Logo

Automatic actions must be disabled for music CDs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-58277 AOSX-09-000095 SV-72707r1_rule Medium
Description
Applications should not be configured to launch automatically when a disk is inserted. This potentially circumvents anti-virus software and allows malicious users to craft disks that can exploit user applications. Disabling Automatic Actions for music CDs mitigates this risk.
STIG Date
Apple OS X 10.9 (Mavericks) Workstation Security Technical Implementation Guide 2017-01-05

Details

Check Text ( C-59103r2_chk )
To check if the system has the correct setting for music CDs in the configuration profile, run the following command:

system_profiler SPConfigurationProfileDataType | grep -A 2 'com.apple.digihub.cd.music.appeared'

If this is not defined or 'action' is not set to '1', this is a finding.
Fix Text (F-63593r1_fix)
This setting is enforced using a configuration profile.