6.2 Turn on filename extensions

Information

A filename extension is a suffix added to a base filename that indicates the base filename's file format.

Rationale:

Visible filename extensions allows the user to identify the file type and the application it is associated with which leads to quick identification of misrepresented malicious files.

Impact:

The user of the system can open files of unknown or unexpected filetypes if the extension is not visible.

Solution

Perform the following to ensure file extensions are shown:
Graphical Method:

Open Finder

Select Finder in the Menu Bar

Select Preferences

Select Advanced

Set Show all filename extensions

Terminal Method:
Run the following command to enable displaying of file extensions:

$ sudo -u <username> defaults write /Users/<username>/Library/Preferences/.GlobalPreferences.plist AppleShowAllExtensions -bool true

example:

$ sudo -u seconduser defaults write /Users/secondname/Library/Preferences/.GlobalPreferences.plist AppleShowAllExtensions -bool true

See Also

https://workbench.cisecurity.org/files/3013

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b.

Plugin: Unix

Control ID: 905aa2ab6dda571e921d7397e592e883fc045c341f0d668b656536b824f4e195