AOSX-13-000850 - The macOS system must restrict the ability of individuals to use USB storage devices - alert

Information

External hard drives, such as USB, must be disabled for users. USB hard drives are a potential vector for malware and can be used to exfiltrate sensitive data if an approved data-loss prevention (DLP) solution is not installed.

Solution

This setting is enforced using the 'Restrictions Policy' configuration profile.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_OS_X_10-13_V2R5_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-214892r609363_rule, STIG-ID|AOSX-13-000850, STIG-Legacy|SV-96377, STIG-Legacy|V-81663, Vuln-ID|V-214892

Plugin: Unix

Control ID: 120cf6e4077f433a7fd00abbadc3ed0c39b2861025f4d438e2829a65315649fc