Skip to content
Log In

Apple macOS 15 (Sequoia) Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-OS-000057-GPOS-00027

    Group
    Show

  • The macOS system must configure the audit log folder to not contain access control lists (ACLs).

    The audit log folder must not contain ACLs. Audit logs contain sensitive data about the system and users. This rule ensures that the audit service is configured to create log folders that are read...
    Rule Medium Severity
    Show

  • SRG-OS-000080-GPOS-00048

    Group
    Show

  • SRG-OS-000163-GPOS-00072

    Group
    Show

  • The macOS system must configure SSHD ClientAliveInterval to 900.

    If SSHD is enabled, it must be configured with the Client Alive Interval set to 900. This sets a timeout interval in seconds, after which if no data has been received from the client, sshd(8) will...
    Rule Medium Severity
    Show

  • SRG-OS-000163-GPOS-00072

    Group
    Show

  • SRG-OS-000163-GPOS-00072

    Group
    Show

  • SRG-OS-000033-GPOS-00014

    Group
    Show

  • SRG-OS-000033-GPOS-00014

    Group
    Show

  • The macOS system must limit SSH to FIPS-compliant connections.

    SSH must be configured to limit the Ciphers, HostbasedAcceptedAlgorithms, HostKeyAlgorithms, KexAlgorithms, MACs, PubkeyAcceptedAlgorithms, CASignatureAlgorithms to algorithms that are FIPS-140 val...
    Rule High Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules