MacWebHosting Configuration Quidance of Macintosh OS X Mac Hosting

Macintosh OS X Workstation STIG, V1R1

DISA Field Security Operations

15 June 2004

Developed by DISA for the DOD

1.  INTRODUCTION

The Macintosh (Mac) OS X Security Technical Implementation Guide (STIG) provides the

technical security policies and requirements for deploying a secure Information System (IS)

running Macintosh OS X in a Department of Defense (DOD) Network environment.

The intent of this Macintosh OS X STIG is to address security considerations for adding an IS

running Mac OS X to a DOD network with an acceptable level of risk.

Most of the checks that are in this document are based on the UNIX side of the Macintosh OS.

Some of these are carried over from the UNIX STIG and are designed to be a baseline for

security.  Included are several checks, which are specific to the Mac OS X side of the

environment.

This STIG is designed for the Mac OS X 10.2 workstation and Mac OS X 10.2 server.

It should be noted that FSO Support for the STIGs, Checklists, and Tools is only available to

DOD Customers.

1.1  Background

In its infancy, the Macintosh was looked at as a computer for the education and the home sectors.

However, with the latest operating system being built upon the BSD UNIX kernel, the Macintosh

is seeing a revival in the government and business sectors.  With this new growth in mind, it is

important to stay on top of the security situation and to assess any vulnerability that may be

present.   Mac OS X has both components of a workstation and a server therefore, it is important

that it is locked down as both while keeping in mind that the standard user must be able to

perform the day to day functions of their job.

The biggest advantage to using a Mac with OS X is that; it allows for the flexibility of the UNIX

OS while offering the simplistic point and click options.

This advantage brings with it a big security issue as well.   Mac OS X versatility makes it a

powerful tool but that versatility can also make a system vulnerable.  The UNIX OS has been

developed to be open for modification and the Mac is no exception.  The UNIX side as well as

the Mac Interface side of the OS must be secure.

It should be noted that FSO Support for the STIGs, Checklists, and Tools is only available to

DOD Customers.

1.2  Authority

DOD Directive 8500.1 requires that  all IA and IA enabled IT products incorporated into DOD

information systems shall be configured in accordance with DOD approved security

configuration guidelines  and tasks DISA to  develop and provide security configuration

guidance for IA and IA enabled IT products in coordination with Director, NSA.  This

document is provided under the authority of DOD Directive 8500.1.

UNCLASSIFIED





  
    
      

    
    Home
    
    About
    
    Services
    
    Network
    
    Support
    
    FAQ
    
    Order
    
    Contact
    
    
         Mac Web Hosting

    
    
    
      Our partners:Jsp Web Hosting Unlimited Web Hosting Cheapest Web Hosting  Java 
      Web Hosting Web Templates Best Web Templates PHP Mysql Web Hosting Interland Web Hosting Cheap Web Hosting PHP Web Hosting Tomcat Web Hosting Quality Web Hosting Best Web Hosting  Mac 
      Web Hosting  

      Lunarwebhost.net  Business web hosting 
      division of Vision Web Hosting Inc. All rights reserved


Home	About	Services	Network	Support	FAQ	Order	Contact
Mac Web Hosting
Our partners:Jsp Web Hosting Unlimited Web Hosting Cheapest Web Hosting Java Web Hosting Web Templates Best Web Templates PHP Mysql Web Hosting Interland Web Hosting Cheap Web Hosting PHP Web Hosting Tomcat Web Hosting Quality Web Hosting Best Web Hosting Mac Web Hosting Lunarwebhost.net Business web hosting division of Vision Web Hosting Inc. All rights reserved