empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 08:55:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

CIS yaml fixes (#9775)

Browse Source
This commit is contained in:
Lucas Manuel Rodriguez 2023-02-09 15:28:47 -03:00 committed by GitHub
parent 1fc799577d
commit 4a5ce51d49
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 24 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

48
ee/cis/macos-13/cis-policy-queries.yml
View File

@ -230,7 +230,7 @@ spec:
query: SELECT * FROM sntp_request WHERE server = 'time.apple.com' AND clock_offset_ms <= 270000 AND clock_offset_ms >= -270000;
purpose: Informational
tags: compliance, CIS, CIS_Level1, CIS2.3.2.2
contributors:
contributors: lucasmrod
---
apiVersion: v1
kind: policy
@ -2077,26 +2077,26 @@ spec:
tags: compliance, CIS, CIS_Level1, CIS6.3.7
contributors: sharon-fdm
---
apiVersion: v1
kind: policy
spec:
name: CIS - Ensure Secure Keyboard Entry Terminal.app Is Enabled (MDM Required)
platforms: macOS
platform: darwin
description: |
Secure Keyboard Entry prevents other applications on the system and/or network from detecting and recording what is typed into Terminal. Unauthorized applications and malicious code could intercept keystrokes entered in the Terminal.
Enabling Secure Keyboard Entry minimizes the risk of a key logger from detecting what is entered in Terminal.
resolution: |
Profile Method:
Create or edit a configuration profile with the following information:
1. The PayloadType string is com.apple.Terminal
2. The key to include is SecureKeyboardEntry
3. The key must be set to
<true/>
query: |
SELECT 1 from managed_policies WHERE domain = 'com.apple.Terminal'
AND name = 'SecureKeyboardEntry'
AND value == 1;
purpose: Informational
tags: compliance, CIS, CIS_Level1, CIS6.4.1
contributors: sharon-fdm
apiVersion: v1
kind: policy
spec:
name: CIS - Ensure Secure Keyboard Entry Terminal.app Is Enabled (MDM Required)
platforms: macOS
platform: darwin
description: |
Secure Keyboard Entry prevents other applications on the system and/or network from detecting and recording what is typed into Terminal. Unauthorized applications and malicious code could intercept keystrokes entered in the Terminal.
Enabling Secure Keyboard Entry minimizes the risk of a key logger from detecting what is entered in Terminal.
resolution: |
Profile Method:
Create or edit a configuration profile with the following information:
1. The PayloadType string is com.apple.Terminal
2. The key to include is SecureKeyboardEntry
3. The key must be set to
<true/>
query: |
SELECT 1 from managed_policies WHERE domain = 'com.apple.Terminal'
AND name = 'SecureKeyboardEntry'
AND value == 1;
purpose: Informational
tags: compliance, CIS, CIS_Level1, CIS6.4.1
contributors: sharon-fdm