An error occurred:

Check: APPL-15-002009

Apple macOS 15 (Sequoia) STIG: APPL-15-002009 (in versions v1 r3 through v1 r1)

Title

The macOS system must disable AirDrop. (Cat II impact)

Discussion

AirDrop must be disabled to prevent file transfers to or from unauthorized devices. AirDrop allows users to share and receive files from other nearby Apple devices. Satisfies: SRG-OS-000080-GPOS-00048, SRG-OS-000095-GPOS-00049, SRG-OS-000300-GPOS-00118

Check Content

Verify the macOS system is configured to disable AirDrop with the following command: /usr/bin/osascript -l JavaScript << EOS $.NSUserDefaults.alloc.initWithSuiteName('com.apple.applicationaccess')\ .objectForKey('allowAirDrop').js EOS If the result is not "false", this is a finding.

Fix Text

Configure the macOS system to disable AirDrop by installing the "com.apple.applicationaccess" configuration profile.

Additional Identifiers

Rule ID: SV-268485r1034395_rule

Vulnerability ID: V-268485

Group Title: SRG-OS-000080-GPOS-00048

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000213

Enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies.
CCI-000381

Configure the system to provide only organization-defined mission essential capabilities.
CCI-001443

Protect wireless access to the system using authentication of users and/or devices.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-3

Access Enforcement
AC-18(1)

Authentication and Encryption
CM-7

Least Functionality