UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Spotlight Panel must be securely configured.


Overview

Finding ID Version Rule ID IA Controls Severity
V-25413 OSX00705 M6 SV-37331r1_rule ECCD-1 Medium
Description
Spotlight can be used to search a computer for files. Spotlight searches the name, the meta-information associated with each file, and the contents of each file. Spotlight finds files regardless of their placement in the file system. This still must be properly set access permissions on folders containing confidential files.
STIG Date
MAC OSX 10.6 Workstation Security Technical Implementation Guide Draft 2013-01-10

Details

Check Text ( C-36023r1_chk )
To securely configure Spotlight preferences:
Open System Preferences.
Click the Spotlight Icon.
In the Search Results pane, verify the categories not wanted as searchable by Spotlight are unchecked.
Click the Privacy pane.
Verify the correct folders and disks are in the Privacy pane; these are not searchable by Spotlight.

If searchable categories or folders are found that should not be searchable, this is a finding.

Fix Text (F-28370r2_fix)
To securely configure Spotlight preferences:
Open System Preferences.
Click the Spotlight Icon.
In the Search Results pane, deselect categories not wanted searchable by Spotlight.
Click the Privacy pane.
Click the Add button or drag a folder or disk into the Privacy pane.
Folders and disks in the Privacy pane are now not searchable by Spotlight.