An error occurred:

Check: APPL-26-002001

Apple macOS 26 (Tahoe) STIG: APPL-26-002001 (in version v1 r1)

Title

The macOS system must disable Server Message Block (SMB) sharing. (Cat II impact)

Discussion

Support for SMB file sharing is nonessential and must be disabled. The information system must be configured to provide only essential capabilities. Enabling any service increases the attack surface for an intruder. By disabling unnecessary services, the attack surface is minimized.

Check Content

Verify the macOS system is configured to disable SMB sharing with the following command: /bin/launchctl print-disabled system | /usr/bin/grep -c '"com.apple.smbd" => disabled' If the result is not "1", this is a finding.

Fix Text

Configure the macOS system to disable SMB sharing with the following command: /bin/launchctl disable system/com.apple.smbd The system may need a restart for the update to take effect.

Additional Identifiers

Rule ID: SV-277085r1148707_rule

Vulnerability ID: V-277085

Group Title: SRG-OS-000080-GPOS-00048

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000213

Enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-3

Access Enforcement