[Forgot Password]
Login  Register Subscribe

24436

 
 

131815

 
 

116471

 
 

909

 
 

91176

 
 

140

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-90302-1

Platform: macosx10.10Date: (C)2015-06-23   (M)2017-11-21



Disable IPv6 if Not in Use Security appliances and firewalls are not always IPv6 aware, meaning that IPv6 traffic is frequently unfiltered and unprotected. If it is not in use, it should be disabled.


Parameter: networksetup


Technical Mechanism: Run the following command to check if IPv6 is enabled on any network interfaces: sudo networksetup -listallnetworkservices | (while read dev; do echo '$dev'; networksetup -getinfo '$dev' | grep IPv6:; echo ; done) If there is an enabled network interface without the setting 'IPv6: Off' and it does not require IPv6, this is a finding.

References:

Resource IdReference
NISTCM-6 b
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:25079


OVAL    2
oval:org.secpod.oval:def:25278
oval:org.secpod.oval:def:25079

© SecPod Technologies