The macOS system must restrict the ability to utilize external writeable media devices.

An XCCDF Rule

Details
Profiles

Description

External writeable media devices must be disabled for users. External USB devices are a potential vector for malware and can be used to exfiltrate sensitive data. Satisfies: SRG-OS-000480-GPOS-00227, SRG-OS-000319-GPOS-00164

ID: SV-252537r877369_rule
Version: APPL-12-005051
Severity: Medium
References: CCI-000366 CCI-001967
Updated: 15 days ago

Remediation Templates

This setting is enforced using the "Restrictions Policy" configuration profile.

The macOS system must restrict the ability to utilize external writeable media devices.

Description

Remediation Templates

A Manual Procedure