usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-02-12 09:32:04 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity
Files
505-create-python-scp-library
macos_security/rules/system_settings/system_settings_ssh_enable.yaml
Dan Brodjieski 7fffa815aa proposed 2.0 schema and rules
2025-04-17 12:43:36 -04:00

51 lines
1.0 KiB
YAML
Raw Permalink Blame History

id: system_settings_ssh_enable
title: Enable SSH Server for Remote Access Sessions
discussion: |
Remote access sessions _MUST_ use encrypted methods to protect unauthorized individuals from gaining access.
references:
nist:
cce:
macos_15:
- CCE-94400-9
macos_14:
- CCE-92995-0
macos_13:
- CCE-91985-2
800-53r5:
- IA-2(8)
- AC-3
- CM-7
- CM-7(1)
- AC-17
800-171r3:
- 03.01.02
- 03.05.04
disa:
cmmc:
- AC.L1-3.1.1
- CM.L2-3.4.6
- CM.L2-3.4.7
- IA.L2-3.5.4
platforms:
macOS:
'15.0': {}
'14.0': {}
'13.0': {}
enforcement_info:
check:
shell: /bin/launchctl print-disabled system | /usr/bin/grep -c '"com.openssh.sshd" => enabled'
result:
integer: 1
fix:
shell: /bin/launchctl enable system/com.openssh.sshd
tags:
- 800-53r5_low
- 800-53r5_moderate
- 800-53r5_high
- 800-171
- cnssi-1253_low
- cnssi-1253_high
- cmmc_lvl2
- cmmc_lvl1
- cnssi-1253_moderate
Reference in New Issue View Git Blame Copy Permalink