Detections
Analytics
APPL-12-005053 - The macOS system must restrict the ability of individuals to write to external optical media.
Information
External writeable media devices must be disabled for users. External optical media devices can be used to exfiltrate sensitive data if an approved data-loss prevention (DLP) solution is not installed.Solution
This setting is enforced using the 'Restrictions Policy' configuration profile.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_macOS_12_V1R9_STIG.zip
Item Details
Audit Name: DISA STIG Apple macOS 12 v1r9
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|III, CCI|CCI-000366, Rule-ID|SV-252539r991589_rule, STIG-ID|APPL-12-005053, Vuln-ID|V-252539
Plugin: Unix
Control ID: 7d441853dceb57120bdf45ddb162430ff2376df89d0613bcf7a349e0a7de9959