Check: OSX8-00-00065
Apple OSX 10.8 STIG:
OSX8-00-00065
(in version v1 r2)
Title
The Bluetooth protocol driver must be removed. (Cat III impact)
Discussion
Wireless access introduces security risks which must be addressed through implementation of strict controls and procedures such as authentication, encryption, and defining what resources that can be accessed. The organization will define the requirements for connection of mobile devices. In order to ensure that the connection provides adequate integrity and confidentiality of the connection, the operating system must enforce these requirements.
Check Content
To check if there are any hardware components for Bluetooth loaded in the system, run the following command: sudo kextstat | grep -i bluetooth If there is a result, this is a finding.
Fix Text
Removing the kernel extensions for Bluetooth will remove the system's ability to load Bluetooth devices, use the following commands to remove them: sudo rm -Rf /System/Library/Extensions/IOBluetoothFamily.kext; sudo rm -Rf /System/Library/Extensions/IOBluetoothHIDDDriver.kext; sudo touch /System/Library/Extensions
Additional Identifiers
Rule ID: SV-65649r1_rule
Vulnerability ID: V-51439
Group Title:
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000086 |
The organization enforces requirements for the connection of mobile devices to organizational information systems. |
Controls
Number | Title |
---|---|
No controls are assigned to this check |