[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

112965

 
 

909

 
 

87888

 
 

136

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-90302-1

Platform: macosx10.10Date: (C)2015-06-23   (M)2017-11-21



Disable IPv6 if Not in Use Security appliances and firewalls are not always IPv6 aware, meaning that IPv6 traffic is frequently unfiltered and unprotected. If it is not in use, it should be disabled.


Parameter: networksetup


Technical Mechanism: Run the following command to check if IPv6 is enabled on any network interfaces: sudo networksetup -listallnetworkservices | (while read dev; do echo '$dev'; networksetup -getinfo '$dev' | grep IPv6:; echo ; done) If there is an enabled network interface without the setting 'IPv6: Off' and it does not require IPv6, this is a finding.

References:

Resource IdReference
NISTCM-6 b
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:25079


OVAL    2
oval:org.secpod.oval:def:25278
oval:org.secpod.oval:def:25079

© SecPod Technologies