Check: AOSX-14-005050
Apple OS X 10.14 (Mojave) STIG:
AOSX-14-005050
(in versions v2 r6 through v1 r1)
Title
The macOS Application Firewall must be enabled. (Cat II impact)
Discussion
Firewalls protect computers from network attacks by blocking or limiting access to open network ports. Application firewalls limit which applications are allowed to communicate over the network.
Check Content
If an approved HBSS solution is installed, this is Not Applicable. To check if the macOS firewall has been enabled, run the following command: /usr/bin/sudo /usr/libexec/ApplicationFirewall/socketfilterfw --getglobalstate If the result is "disabled", this is a finding.
Fix Text
To enable the firewall, run the following command: /usr/bin/sudo /usr/libexec/ApplicationFirewall/socketfilterfw --setglobalstate on
Additional Identifiers
Rule ID: SV-209637r610285_rule
Vulnerability ID: V-209637
Group Title: SRG-OS-000480-GPOS-00232
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |