Check: APPL-14-002009
Apple macOS 14 (Sonoma) STIG:
APPL-14-002009
(in versions v1 r2 through v1 r1)
Title
The macOS system must disable AirDrop. (Cat II impact)
Discussion
AirDrop must be disabled to prevent file transfers to or from unauthorized devices. AirDrop allows users to share and receive files from other nearby Apple devices. Satisfies: SRG-OS-000080-GPOS-00048,SRG-OS-000095-GPOS-00049,SRG-OS-000300-GPOS-00118
Check Content
Verify the macOS system is configured to disable AirDrop with the following command: /usr/bin/osascript -l JavaScript << EOS $.NSUserDefaults.alloc.initWithSuiteName('com.apple.applicationaccess')\ .objectForKey('allowAirDrop').js EOS If the result is not "false", this is a finding.
Fix Text
Configure the macOS system to disable AirDrop by installing the "com.apple.applicationaccess" configuration profile.
Additional Identifiers
Rule ID: SV-259485r941077_rule
Vulnerability ID: V-259485
Group Title: SRG-OS-000080-GPOS-00048
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000213 |
The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies. |
| CCI-000381 |
The organization configures the information system to provide only essential capabilities. |
| CCI-001443 |
The information system protects wireless access to the system using authentication of users and/or devices. |