The macOS system must restrict the ability of individuals to write to external optical media.
An XCCDF Rule
Description
<VulnDiscussion>External writeable media devices must be disabled for users. External optical media devices can be used to exfiltrate sensitive data if an approved data-loss prevention (DLP) solution is not installed.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-252539r816431_rule
- Severity
- Low
- References
- Updated
Remediation - Manual Procedure
This setting is enforced using the "Restrictions Policy" configuration profile.