AOSX-13-000965 - The macOS system must be configured with Bluetooth Sharing disabled.

Information

Bluetooth sharing allows users to wirelessly transmit files between the macOS host and Bluetooth-enabled devices, including personally owned cellphones and tablets. A malicious user might introduce viruses or malware onto the system or extract sensitive files. Disabling Bluetooth Sharing mitigates this risk.

Solution

To disable Bluetooth Sharing, open System Preferences >> Sharing and uncheck the box next to 'Bluetooth Sharing'. This control is not necessary if Bluetooth has been completely disabled.

The following can be run from the command line to disable 'Bluetooth Sharing' for the current user:

/usr/bin/defaults write /Users/'whoami'/Library/Preferences/ByHost/com.apple.Bluetooth.'/usr/sbin/system_profiler SPHardwareDataType | /usr/bin/grep 'Hardware UUID' | /usr/bin/cut -c22-57'.plist PrefKeyServicesEnabled 0

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_OS_X_10-13_V2R5_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-214898r609363_rule, STIG-ID|AOSX-13-000965, STIG-Legacy|SV-96389, STIG-Legacy|V-81675, Vuln-ID|V-214898

Plugin: Unix

Control ID: b9e73b77737a900bb9bbe8c77ccef2c1601db7cc6dac4eabfd1d434f3b2b288b