usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-03-18 14:42:12 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity
1,386 Commits 29 Branches 61 Tags
cb85787e5d4b4068cd83dcff46480dca2ad51fce
Commit Graph

1386 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dan Brodjieski
cb85787e5d fix[script]: support both .yaml and .yml 
Issue #412
 2024-09-04 14:34:15 -04:00
Bob Gendler
64424234f0 refactor[rules] Added rule 
system_settings_siri_listen_disable added
 2024-09-04 13:53:08 -04:00
Bob Gendler
d249abe084 refactor[rules] External Storage 
Modified os_network_storage_restriction and os_external_storage_access_defined
 2024-09-04 12:41:45 -04:00
Bob Gendler
7ea663372f Added 800-53 tags 2024-09-04 12:24:36 -04:00
Bob Gendler
f22aeb65ec Fixed merge conflict 2024-09-04 12:22:20 -04:00
Bob Gendler
367a818e01 resolved merge conflicts 2024-09-04 12:21:50 -04:00
Bob Gendler
5d9cc9690f fixed merge conflicts 2024-09-04 12:19:32 -04:00
Bob Gendler
e32956ccaa Merge branch 'dev_sequoia_171r3' into dev_sequoia 2024-09-04 12:09:49 -04:00
Bob Gendler
98c46e62ef updated supported payloads. copied sudo_log from stig 2024-09-04 10:53:39 -04:00
Bob Gendler
90c7a405b9 refactor[rules]Update for cis 15.0 benchmark draft 
Created new rule system_settings_improve_assistive_voice_disable
Modified rules
Added to supplemental_cis_manual
 2024-09-04 09:57:32 -04:00
Bob Gendler
9d0fc0ca89 Issue #418 2024-09-03 10:08:56 -04:00
Bob Gendler
615317fe6c refactor[scripts/templates] Updated 171r2 to 171r3 
Changed the 171r2s to 171r3s everywhere
 2024-09-01 21:36:10 -04:00
Bob Gendler
36be258cd3 refactor[rules]Added 15.x specific rules 171r3 
Added 171r3 references to new rule files
 2024-09-01 21:35:38 -04:00
Bob Gendler
9271106cd6 refactor[rules] Converted 171r2 to 171r3 
Added 171r3 to some rules
Converted 171r2 to r3 in most rules
 2024-09-01 21:28:47 -04:00
John Mahlman
391e5ff6f5 Removing unneeded rules. 2024-08-30 11:32:44 -04:00
John Mahlman
9ba2fcabd2 Update baselines. 2024-08-30 10:37:26 -04:00
John Mahlman
b85739a2d3 Update os_sudo_log_enforce. 2024-08-30 10:14:15 -04:00
John Mahlman
b5deee9445 Add Sequoia CMMC branch. Apple Intelligence rules tagged. 2024-08-30 09:54:43 -04:00
Dan Brodjieski
40f01341fa fix: corrected severity logic 2024-08-27 10:05:31 -04:00
Dan Brodjieski
6a4af2dfef feat[doc]: add support for severity 
severity key in yaml can be string or a dictionary containing
key/values for different baselines
if a severity exists for a rule, it will be included in the reference
table within the HTML/PDF as well as a column in the XLS
 2024-08-22 15:52:33 -04:00
Dan Brodjieski
fd05002da9 Merge branch 'dev_sequoia' into dev_sequoia_severity 2024-08-22 15:49:59 -04:00
Dan Brodjieski
a2f6652817 feat[ddm]: added configs for asset declarations 2024-08-19 12:58:38 -04:00
Dan Brodjieski
f667f7f96e fix[ddm]: nested ODVs now work with DDM 
feat[ddm]: generate activations with DDM
 2024-08-19 11:03:36 -04:00
Allen Golbig
9409afae43 updated check for os_anti_virus_installed 2024-08-15 10:02:45 -04:00
Bob Gendler
e6ca686eb9 Removed os_gatekeeper_rearm 2024-08-14 10:26:13 -04:00
Allen Golbig
4c6fb8b693 removed os_firewall_log_enable from all_rules 2024-08-12 09:01:33 -04:00
robertgendler
b266b6e0cd renamed file 2024-08-08 10:00:38 -04:00
robertgendler
e510dd1fa3 Removed os_gatekeeper_rearm, Added so_sudo_log_enforce 2024-08-08 09:57:55 -04:00
robertgendler
bcfc179096 removed firewall logging rule 2024-08-07 09:34:21 -04:00
Bob Gendler
a6868651e4 updated fips 140-2 to 140-3 2024-08-05 11:10:21 -04:00
Bob Gendler
03d8fb31f5 updated result 2024-08-05 11:08:39 -04:00
Bob Gendler
71e7fe24a8 refactor[rules] Updated FIPS SSH rules 
Updated check/fix for macOS 15 and ssh fips configuration.
 2024-08-05 11:06:28 -04:00
Dan Brodjieski
d986f549ff refactor[ddm]: add ddm info to sudo rule 2024-07-30 15:01:24 -04:00
Dan Brodjieski
5e782d3fdd refactor[ddm]: add ddm info to remaining sshd rules 2024-07-30 15:01:01 -04:00
Dan Brodjieski
82ff8b0aaf fix[script]: correctly build and zip DDM assets 2024-07-30 15:00:38 -04:00
Dan Brodjieski
ace04fc6f5 fix[script]: will skip missing ddm types 2024-07-26 14:59:07 -04:00
Bob Gendler
539cdfd83d refactor[rules] Added Disk Management DDM 
Added com.apple.configuration.diskmanagement.settings to mscp-data
Added os_external_storage_restriction
Added os_network_storage_restriction
 2024-07-26 14:50:43 -04:00
Bob Gendler
06da97bc2a refactor[rules] Updated DDM info for pwpolicy 
Added DDM info for pwpolicy rules
 2024-07-25 09:52:53 -04:00
Bob Gendler
96ade12e2f feat[ddm] Added DDM to sequoia 
Updated scripts and rule files
 2024-07-24 14:00:10 -04:00
Bob Gendler
d75a7b1245 Fixed the fix statement 2024-07-16 11:51:49 -04:00
Bob Gendler
dec9527722 fixed checked 2024-07-16 10:23:36 -04:00
Bob Gendler
ea3b1f0bc4 refactor[rules] Added AI rules 
Added
* os_genmoji_disable
* os_image_generation_disable
* os_iphone_mirroring_disable
* os_writing_tools_disable
 2024-07-15 21:37:49 -04:00
Bob Gendler
97cde24135 updated check to use jxa 2024-07-15 21:07:00 -04:00
Bob Gendler
182a4d8d1e refactor[rules] Gatekeeper rules 
Gatekeeper is fully enforced by configuration profile now.
 2024-07-15 21:00:28 -04:00
Bob Gendler
514d451ff6 refactor[rules] firewall rules 
Firewall is now fully enforced by a configuration profile.
 2024-07-15 21:00:28 -04:00
Allen Golbig
d7db6e4c3d updated system_settings_media_sharing_disabled 2024-07-15 20:55:27 -04:00
Allen Golbig
866f60c723 updated os_implement_cryptography 2024-07-15 20:33:51 -04:00
Allen Golbig
d1de3c0665 removed cces and stigs 2024-07-15 19:52:43 -04:00
Allen Golbig
701e4d6b6a dev_sequoia 2024-07-15 18:01:42 -04:00
Allen Golbig
d3a6dfe9d0 [fix]gemfile - hardcode asciidoc 2.0.22 
Hardcode asciidoc 2.0.22 to resolve table issue

Issue #399
 2024-05-30 08:28:24 -04:00