AOSX-10-000065 - The Bluetooth software driver must be removed. - 'IOBluetoothHIDDriver.kext'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

The Bluetooth kernel extension must be removed, as wireless access introduces unnecessary security risks. Removing Bluetooth support entirely mitigates this risk.

Solution

Removing the kernel extensions for Bluetooth will remove the system's ability to load Bluetooth devices, use the following commands to remove them:

sudo rm -rf /System/Library/Extensions/IOBluetoothFamily.kext /System/Library/Extensions/IOBluetoothHIDDriver.kext; sudo touch /System/Library/Extensions

See Also

http://iasecontent.disa.mil/stigs/zip/U_Apple_OS_X_10-10_Workstation_V1R5_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7, CAT|III, CCI|CCI-000366, CSCv6|9.1, Rule-ID|SV-73969r1_rule, STIG-ID|AOSX-10-000065, Vuln-ID|V-59539

Plugin: Unix

Control ID: 9b5c59cff4e55bcc750434d4861f866be4b570d0362a89a4c2042d8e77aca1bf