[Forgot Password]
Login  Register Subscribe

23631

 
 

126951

 
 

99536

 
 

909

 
 

80128

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-90302-1

Platform: macosx10.10Date: (C)2015-06-23   (M)2017-11-21



Disable IPv6 if Not in Use Security appliances and firewalls are not always IPv6 aware, meaning that IPv6 traffic is frequently unfiltered and unprotected. If it is not in use, it should be disabled.


Parameter: networksetup


Technical Mechanism: Run the following command to check if IPv6 is enabled on any network interfaces: sudo networksetup -listallnetworkservices | (while read dev; do echo '$dev'; networksetup -getinfo '$dev' | grep IPv6:; echo ; done) If there is an enabled network interface without the setting 'IPv6: Off' and it does not require IPv6, this is a finding.

References:

Resource IdReference
NISTCM-6 b
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:25079


OVAL    2
oval:org.secpod.oval:def:25278
oval:org.secpod.oval:def:25079

© 2013 SecPod Technologies