Only essential services must be allowed through firewall.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-25335 | OSX00455 M6 | SV-38563r1_rule | ECND-1 | Medium |
| Description |
|---|
| Allowing only essential services through the firewall alleviates the potential for unwanted services to run on the system, and cuts down on system usage. |
| STIG | Date |
|---|---|
| MAC OSX 10.6 Workstation Security Technical Implementation Guide Draft | 2013-01-10 |
Details
| Check Text ( C-37758r1_chk ) |
|---|
| Open System Preferences->Security. Select Firewall tab. Select Advanced (firewall should be started). Either "Block all incoming connections" should be checked or only essential services and applications should be allowed. If not, this is a finding. |
| Fix Text (F-33002r1_fix) |
|---|
| Open System Preferences -> Security. Select Firewall tab. Select the Advanced button. Check "Block all incoming connections" or remove any non-essential services and applications. |