usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-03-16 14:02:07 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity
1,368 Commits 29 Branches 61 Tags
40f01341fa68edfbf40df4e28bf7ae9d4b9d8fef
Commit Graph

1368 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dan Brodjieski
40f01341fa fix: corrected severity logic 2024-08-27 10:05:31 -04:00
Dan Brodjieski
6a4af2dfef feat[doc]: add support for severity 
severity key in yaml can be string or a dictionary containing
key/values for different baselines
if a severity exists for a rule, it will be included in the reference
table within the HTML/PDF as well as a column in the XLS
 2024-08-22 15:52:33 -04:00
Dan Brodjieski
fd05002da9 Merge branch 'dev_sequoia' into dev_sequoia_severity 2024-08-22 15:49:59 -04:00
Dan Brodjieski
a2f6652817 feat[ddm]: added configs for asset declarations 2024-08-19 12:58:38 -04:00
Dan Brodjieski
f667f7f96e fix[ddm]: nested ODVs now work with DDM 
feat[ddm]: generate activations with DDM
 2024-08-19 11:03:36 -04:00
Allen Golbig
9409afae43 updated check for os_anti_virus_installed 2024-08-15 10:02:45 -04:00
Bob Gendler
e6ca686eb9 Removed os_gatekeeper_rearm 2024-08-14 10:26:13 -04:00
Allen Golbig
4c6fb8b693 removed os_firewall_log_enable from all_rules 2024-08-12 09:01:33 -04:00
robertgendler
b266b6e0cd renamed file 2024-08-08 10:00:38 -04:00
robertgendler
e510dd1fa3 Removed os_gatekeeper_rearm, Added so_sudo_log_enforce 2024-08-08 09:57:55 -04:00
robertgendler
bcfc179096 removed firewall logging rule 2024-08-07 09:34:21 -04:00
Bob Gendler
a6868651e4 updated fips 140-2 to 140-3 2024-08-05 11:10:21 -04:00
Bob Gendler
03d8fb31f5 updated result 2024-08-05 11:08:39 -04:00
Bob Gendler
71e7fe24a8 refactor[rules] Updated FIPS SSH rules 
Updated check/fix for macOS 15 and ssh fips configuration.
 2024-08-05 11:06:28 -04:00
Dan Brodjieski
d986f549ff refactor[ddm]: add ddm info to sudo rule 2024-07-30 15:01:24 -04:00
Dan Brodjieski
5e782d3fdd refactor[ddm]: add ddm info to remaining sshd rules 2024-07-30 15:01:01 -04:00
Dan Brodjieski
82ff8b0aaf fix[script]: correctly build and zip DDM assets 2024-07-30 15:00:38 -04:00
Dan Brodjieski
ace04fc6f5 fix[script]: will skip missing ddm types 2024-07-26 14:59:07 -04:00
Bob Gendler
539cdfd83d refactor[rules] Added Disk Management DDM 
Added com.apple.configuration.diskmanagement.settings to mscp-data
Added os_external_storage_restriction
Added os_network_storage_restriction
 2024-07-26 14:50:43 -04:00
Bob Gendler
06da97bc2a refactor[rules] Updated DDM info for pwpolicy 
Added DDM info for pwpolicy rules
 2024-07-25 09:52:53 -04:00
Bob Gendler
96ade12e2f feat[ddm] Added DDM to sequoia 
Updated scripts and rule files
 2024-07-24 14:00:10 -04:00
Bob Gendler
d75a7b1245 Fixed the fix statement 2024-07-16 11:51:49 -04:00
Bob Gendler
dec9527722 fixed checked 2024-07-16 10:23:36 -04:00
Bob Gendler
ea3b1f0bc4 refactor[rules] Added AI rules 
Added
* os_genmoji_disable
* os_image_generation_disable
* os_iphone_mirroring_disable
* os_writing_tools_disable
 2024-07-15 21:37:49 -04:00
Bob Gendler
97cde24135 updated check to use jxa 2024-07-15 21:07:00 -04:00
Bob Gendler
182a4d8d1e refactor[rules] Gatekeeper rules 
Gatekeeper is fully enforced by configuration profile now.
 2024-07-15 21:00:28 -04:00
Bob Gendler
514d451ff6 refactor[rules] firewall rules 
Firewall is now fully enforced by a configuration profile.
 2024-07-15 21:00:28 -04:00
Allen Golbig
d7db6e4c3d updated system_settings_media_sharing_disabled 2024-07-15 20:55:27 -04:00
Allen Golbig
866f60c723 updated os_implement_cryptography 2024-07-15 20:33:51 -04:00
Allen Golbig
d1de3c0665 removed cces and stigs 2024-07-15 19:52:43 -04:00
Allen Golbig
701e4d6b6a dev_sequoia 2024-07-15 18:01:42 -04:00
Allen Golbig
d3a6dfe9d0 [fix]gemfile - hardcode asciidoc 2.0.22 
Hardcode asciidoc 2.0.22 to resolve table issue

Issue #399
 2024-05-30 08:28:24 -04:00
Dan Brodjieski
df372f00c7 Update Gemfile - lock version for rexml 2024-05-16 16:09:49 -04:00
Bob Gendler
43cfcb5b3d Update release date sonoma_rev2 2024-04-24 09:26:17 -04:00
Bob Gendler
bad4dab841 fixed duplicate ID issue 2024-04-23 14:01:45 -04:00
Bob Gendler
8b663821cf Update README.adoc 2024-04-22 12:04:39 -04:00
Bob Gendler
255523a32a Merge branch 'dev_sonoma_release' into sonoma 2024-04-22 10:42:44 -04:00
Bob Gendler
8ff9b66680 Update README.adoc 2024-04-22 10:20:24 -04:00
Bob Gendler
afd1da593b Update VERSION.yaml 2024-04-22 09:55:24 -04:00
Bob Gendler
8a1f6082dd Update CHANGELOG.adoc 2024-04-22 09:54:58 -04:00
Bob Gendler
d5e8e7e3de Update CHANGELOG.adoc 2024-04-22 09:49:13 -04:00
Bob Gendler
b9e8e8ceb8 Update CHANGELOG.adoc 2024-04-22 09:40:07 -04:00
Bob Gendler
40f87693c6 Merge branch 'dev_sonoma_issue388' into sonoma 2024-04-18 10:58:11 -04:00
Bob Gendler
bdde2d44d3 feat[utils]generate_checklist 
Added json export ability
 2024-04-18 10:57:05 -04:00
Bob Gendler
74b3fb66b3 Merge branch 'dev_sonoma_issue361' into sonoma 2024-04-18 10:45:48 -04:00
Allen Golbig
32cc5803d5 updated changelog 2024-04-14 19:28:26 -04:00
Allen Golbig
c8d3339dee updated changelog 2024-04-14 19:20:13 -04:00
Bob Gendler
52798b62ca refactor[rules]Update discussion os_camera_disable 
Updated discussion for os_camera_disable to match Ventura DISA STIG.
 2024-04-11 11:20:04 -04:00
Dan Brodjieski
17ae94c597 fix: additional syntax changes 2024-04-10 10:47:38 -04:00
Dan Brodjieski
8e102c034f fix[script]: updated syntax for replace values 
When replacing text to include a backslash, newer versions of
python caused syntax errors.  Updating with raw strings
resolves the issue.

Issue #361
 2024-04-10 10:26:37 -04:00