Merge branch 'big_sur' of https://github.com/usnistgov/macos_security into big_sur

2026-03-04 17:23:16 +00:00 · 2021-07-23 20:25:13 -04:00
parent 9ed469aab8 6169f24648
commit cdad192c85
4 changed files with 5 additions and 5 deletions
--- a/CHANGELOG.adoc
+++ b/CHANGELOG.adoc
@@ -2,7 +2,7 @@

 This document provides a high-level view of the changes to the macOS Security Compliance Project.

-== [Big Sur, Revision 3] - 2021-07-22
+== [Big Sur, Revision 3] - 2021-07-26

 * Rules
 ** Added Rules
--- a/SCAP/html-to-xccdf.xsl
+++ b/SCAP/html-to-xccdf.xsl
@@ -474,7 +474,7 @@
                                <xsl:for-each select="tokenize(., ',\s+')">
                                    <xsl:element name="reference" namespace="http://checklists.nist.gov/xccdf/1.2">
                                        <xsl:attribute name="href">
-                                            <xsl:text>https://nvd.nist.gov/800-53/Rev4/control/</xsl:text>
+                                            <xsl:text>https://nvd.nist.gov/800-53/Rev5/control/</xsl:text>
                                            <xsl:choose>
                                                <xsl:when test="matches(., '[A-Z]{2}-\d+$')">
                                                    <xsl:value-of select="."/>
@@ -487,7 +487,7 @@
                                                </xsl:when>
                                            </xsl:choose>
                                        </xsl:attribute>
-                                        <xsl:text>NIST SP 800-53r4 </xsl:text>
+                                        <xsl:text>NIST SP 800-53r5 </xsl:text>
                                        <xsl:value-of select="."/>
                                    </xsl:element>
                                </xsl:for-each>
--- a/VERSION.yaml
+++ b/VERSION.yaml
@@ -1,3 +1,3 @@
 os: "11.0"
 version: "Big Sur, Revision 3"
-date: "2021-07-22"
+date: "2021-07-26"
--- a/rules/auth/auth_smartcard_enforce.yaml
+++ b/rules/auth/auth_smartcard_enforce.yaml
@@ -7,7 +7,7 @@ discussion: |

  When enforceSmartCard is set to “true”, the smartcard must be used for login, authorization, and unlocking the screensaver.

-  CAUTION: enforceSmartCard will apply to the whole system. No users will be able to login with their password unless the profile is removed or a member of the NotEnforced group.
+  CAUTION: enforceSmartCard will apply to the whole system. No users will be able to login with their password unless the profile is removed or a user is exempt from smartcard enforcement.
  
  NOTE: enforceSmartcard requires allowSmartcard to be set to true in order to work.
 check: |