From 7d83aaab1e5b03f31d679ca4c2e15eb4f08cea2d Mon Sep 17 00:00:00 2001 From: Allen Golbig Date: Thu, 10 Sep 2020 10:42:58 -0400 Subject: [PATCH] edits for 171 --- baselines/800-53_high.yaml | 1 - baselines/800-53_low.yaml | 1 - baselines/800-53_moderate.yaml | 1 - baselines/all_rules.yaml | 1 - baselines/cnssi-1253.yaml | 1 - rules/audit/audit_retention_configure.yaml | 1 + rules/icloud/icloud_addressbook_disable.yaml | 1 + rules/icloud/icloud_appleid_prefpane_disable.yaml | 1 + rules/icloud/icloud_bookmarks_disable.yaml | 1 + rules/icloud/icloud_calendar_disable.yaml | 1 + rules/icloud/icloud_drive_disable.yaml | 1 + rules/icloud/icloud_keychain_disable.yaml | 1 + rules/icloud/icloud_mail_disable.yaml | 1 + rules/icloud/icloud_notes_disable.yaml | 1 + rules/icloud/icloud_photos_disable.yaml | 1 + rules/icloud/icloud_reminders_disable.yaml | 1 + rules/icloud/icloud_sync_disable.yaml | 1 + 17 files changed, 12 insertions(+), 5 deletions(-) diff --git a/baselines/800-53_high.yaml b/baselines/800-53_high.yaml index 1a3fc858..6e36dd03 100644 --- a/baselines/800-53_high.yaml +++ b/baselines/800-53_high.yaml @@ -33,7 +33,6 @@ profile: - auth_smartcard_enforce - auth_smartcard_certificate_trust_enforce_high - auth_ssh_smartcard_enforce - - auth_smartcard_trusted_authorities_configure - section: "SystemPreferences" rules: - sysprefs_ad_tracking_disable diff --git a/baselines/800-53_low.yaml b/baselines/800-53_low.yaml index 43865357..f4df00b1 100644 --- a/baselines/800-53_low.yaml +++ b/baselines/800-53_low.yaml @@ -30,7 +30,6 @@ profile: - auth_smartcard_allow - auth_smartcard_enforce - auth_ssh_smartcard_enforce - - auth_smartcard_trusted_authorities_configure - section: "SystemPreferences" rules: - sysprefs_ad_tracking_disable diff --git a/baselines/800-53_moderate.yaml b/baselines/800-53_moderate.yaml index a26b55ff..246eb307 100644 --- a/baselines/800-53_moderate.yaml +++ b/baselines/800-53_moderate.yaml @@ -31,7 +31,6 @@ profile: - auth_smartcard_enforce - auth_smartcard_certificate_trust_enforce_moderate - auth_ssh_smartcard_enforce - - auth_smartcard_trusted_authorities_configure - section: "SystemPreferences" rules: - sysprefs_ad_tracking_disable diff --git a/baselines/all_rules.yaml b/baselines/all_rules.yaml index 7f792ba4..2da27bd0 100644 --- a/baselines/all_rules.yaml +++ b/baselines/all_rules.yaml @@ -34,7 +34,6 @@ profile: - auth_smartcard_certificate_trust_enforce_high - auth_smartcard_certificate_trust_enforce_moderate - auth_ssh_smartcard_enforce - - auth_smartcard_trusted_authorities_configure - section: "SystemPreferences" rules: - sysprefs_ad_tracking_disable diff --git a/baselines/cnssi-1253.yaml b/baselines/cnssi-1253.yaml index f61c430a..115deef8 100644 --- a/baselines/cnssi-1253.yaml +++ b/baselines/cnssi-1253.yaml @@ -31,7 +31,6 @@ profile: - auth_smartcard_enforce - auth_smartcard_certificate_trust_enforce_moderate - auth_ssh_smartcard_enforce - - auth_smartcard_trusted_authorities_configure - section: "SystemPreferences" rules: - sysprefs_ad_tracking_disable diff --git a/rules/audit/audit_retention_configure.yaml b/rules/audit/audit_retention_configure.yaml index 9d6cdfad..f1c78b72 100644 --- a/rules/audit/audit_retention_configure.yaml +++ b/rules/audit/audit_retention_configure.yaml @@ -20,6 +20,7 @@ references: - CCI-001849 800-53r4: - AU-4 + - AU-11 srg: - SRG-OS-000341-GPOS-00132 disa_stig: diff --git a/rules/icloud/icloud_addressbook_disable.yaml b/rules/icloud/icloud_addressbook_disable.yaml index 84802364..4b722641 100644 --- a/rules/icloud/icloud_addressbook_disable.yaml +++ b/rules/icloud/icloud_addressbook_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_appleid_prefpane_disable.yaml b/rules/icloud/icloud_appleid_prefpane_disable.yaml index b3330ce7..9661783f 100644 --- a/rules/icloud/icloud_appleid_prefpane_disable.yaml +++ b/rules/icloud/icloud_appleid_prefpane_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_bookmarks_disable.yaml b/rules/icloud/icloud_bookmarks_disable.yaml index 0216e004..b96491a7 100644 --- a/rules/icloud/icloud_bookmarks_disable.yaml +++ b/rules/icloud/icloud_bookmarks_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_calendar_disable.yaml b/rules/icloud/icloud_calendar_disable.yaml index a4bc3095..8f944901 100644 --- a/rules/icloud/icloud_calendar_disable.yaml +++ b/rules/icloud/icloud_calendar_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_drive_disable.yaml b/rules/icloud/icloud_drive_disable.yaml index b688da65..fa72c629 100644 --- a/rules/icloud/icloud_drive_disable.yaml +++ b/rules/icloud/icloud_drive_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_keychain_disable.yaml b/rules/icloud/icloud_keychain_disable.yaml index 590201e2..e139a55b 100644 --- a/rules/icloud/icloud_keychain_disable.yaml +++ b/rules/icloud/icloud_keychain_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_mail_disable.yaml b/rules/icloud/icloud_mail_disable.yaml index 45d28bc4..a34c1981 100644 --- a/rules/icloud/icloud_mail_disable.yaml +++ b/rules/icloud/icloud_mail_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_notes_disable.yaml b/rules/icloud/icloud_notes_disable.yaml index 123900c9..cf1147fb 100644 --- a/rules/icloud/icloud_notes_disable.yaml +++ b/rules/icloud/icloud_notes_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_photos_disable.yaml b/rules/icloud/icloud_photos_disable.yaml index 44c874e9..c6b7a0d0 100644 --- a/rules/icloud/icloud_photos_disable.yaml +++ b/rules/icloud/icloud_photos_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_reminders_disable.yaml b/rules/icloud/icloud_reminders_disable.yaml index cc4f775c..50a6aae2 100644 --- a/rules/icloud/icloud_reminders_disable.yaml +++ b/rules/icloud/icloud_reminders_disable.yaml @@ -19,6 +19,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155 diff --git a/rules/icloud/icloud_sync_disable.yaml b/rules/icloud/icloud_sync_disable.yaml index c98a14a1..18ac0595 100644 --- a/rules/icloud/icloud_sync_disable.yaml +++ b/rules/icloud/icloud_sync_disable.yaml @@ -18,6 +18,7 @@ references: 800-53r4: - CM-7 - AC-20 + - AC-20(1) srg: - SRG-OS-000095-GPOS-00049 - SRG-OS-000370-GPOS-00155