Navigate

Check: GEN003860 M6

MACOSX 10.6: GEN003860 M6 (in version v1 r3)

Title

The system must not have the finger service active. (Cat III impact)

Discussion

The finger service provides information about the system's users to network clients. This information could expose information to be used in subsequent attacks.

Check Content

Open a terminal session and enter the following command to verify finger is disabled. defaults read /var/db/launchd.db/com.apple.launchd/overrides com.apple.fingerd If a value of 1 is not returned, this is a finding.

Fix Text

Open a terminal session and use the following command to disable finger. launchctl unload -w /System/Library/LaunchDaemons/finger.plist NOTE: This command is being run to adjust the overrides file; unloading errors are normal, repeat the check to verify.

Additional Identifiers

Rule ID: SV-38057r2_rule

Vulnerability ID: V-4701

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-001551	The organization defines approved authorizations for controlling the flow of information between interconnected systems.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
AC-4	Information Flow Enforcement