Check: OSX00140 M6
MACOSX 10.6:
OSX00140 M6
(in version v1 r3)
Title
Security auditing must be enabled. (Cat II impact)
Discussion
Auditing is the capture and maintenance of information about security-related events. Auditing helps determine the causes and the methods used for successful and failed access attempts.
Check Content
Open a terminal session and run the following command. sudo launchctl list Verify "com.apple.auditd" appears. If the file does not appear, this is a finding.
Fix Text
Open a terminal session and run the following command. sudo launchctl load -w /System/Library/LaunchDaemons/com.apple.auditd.plist
Additional Identifiers
Rule ID: SV-38520r1_rule
Vulnerability ID: V-25268
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |