Hi, 
Guest
Pic
Sign In

oval_developer@lists.cisecurity.org

A list for people interested in developing the OVAL language.

View all threads

FW: MacOS Gatekeeper test - Any design docs, anywhere?

UJ
Ulmer, John R CIV USN SPAWARSYSCEN LANT SC (US)
Thu, Jan 31, 2019 6:07 PM

Apologies, if this is redundant.  But, I think I usually get a copy of email sent to the list, myself.  And, I did not see one.  So, I'm sending this again.  Please see forwarded email below.

From: Ulmer, John R CIV USN SPAWARSYSCEN LANT SC (US)
Sent: Wednesday, January 30, 2019 9:41 AM
To: oval_developer@lists.cisecurity.org
Subject: MacOS Gatekeeper test - Any design docs, anywhere?

Morning All,

Does anyone know where I can find some design/intended-use docs for the MacOS Gatekeeper test?  The schema are a little vague.

Thanks

John R Ulmer
SPAWAR System Center Atlantic
John.r.ulmer6.civ@mail.milmailto:John.r.ulmer6.civ@mail.mil
843 218-5953

Apologies, if this is redundant. But, I think I usually get a copy of email sent to the list, myself. And, I did not see one. So, I'm sending this again. Please see forwarded email below. From: Ulmer, John R CIV USN SPAWARSYSCEN LANT SC (US) Sent: Wednesday, January 30, 2019 9:41 AM To: oval_developer@lists.cisecurity.org Subject: MacOS Gatekeeper test - Any design docs, anywhere? Morning All, Does anyone know where I can find some design/intended-use docs for the MacOS Gatekeeper test? The schema are a little vague. Thanks ---------------------------------------- John R Ulmer SPAWAR System Center Atlantic John.r.ulmer6.civ@mail.mil<mailto:John.r.ulmer6.civ@mail.mil> 843 218-5953
DS
David Solin
Thu, Jan 31, 2019 7:22 PM

Hi John,

This is one of the tests I added to make it possible to convert the CIS guidance on MacOSX into pure OVAL!  Sorry I didn’t document it very well… you can always submit a PR to update it. ;)

Anyway, the enabled item entity maps to the result of the command “spctl --status”.  You can find any unlabeled (unsigned) applications using “spctl --list | grep -i unlabeled”.

For more info, see:
https://protect-us.mimecast.com/s/eSGUCDkZGptzo27TWAGEC?domain=en.wikipedia.org

Best regards,
—David Solin

On Jan 31, 2019, at 12:07 PM, Ulmer, John R CIV USN SPAWARSYSCEN LANT SC (US) via OVAL_Developer oval_developer@lists.cisecurity.org wrote:

Apologies, if this is redundant.  But, I think I usually get a copy of email sent to the list, myself.  And, I did not see one.  So, I’m sending this again.  Please see forwarded email below.

From: Ulmer, John R CIV USN SPAWARSYSCEN LANT SC (US)
Sent: Wednesday, January 30, 2019 9:41 AM
To: oval_developer@lists.cisecurity.org mailto:oval_developer@lists.cisecurity.org
Subject: MacOS Gatekeeper test - Any design docs, anywhere?

Morning All,

Does anyone know where I can find some design/intended-use docs for the MacOS Gatekeeper test?  The schema are a little vague.

Thanks

John R Ulmer
SPAWAR System Center Atlantic
John.r.ulmer6.civ@mail.mil mailto:John.r.ulmer6.civ@mail.mil
843 218-5953

OVAL_Developer mailing list
OVAL_Developer@lists.cisecurity.org mailto:OVAL_Developer@lists.cisecurity.org
http://lists.cisecurity.org/mailman/listinfo/oval_developer_lists.cisecurity.org http://lists.cisecurity.org/mailman/listinfo/oval_developer_lists.cisecurity.org

Hi John, This is one of the tests I added to make it possible to convert the CIS guidance on MacOSX into pure OVAL! Sorry I didn’t document it very well… you can always submit a PR to update it. ;) Anyway, the enabled item entity maps to the result of the command “spctl --status”. You can find any unlabeled (unsigned) applications using “spctl --list | grep -i unlabeled”. For more info, see: https://protect-us.mimecast.com/s/eSGUCDkZGptzo27TWAGEC?domain=en.wikipedia.org Best regards, —David Solin > On Jan 31, 2019, at 12:07 PM, Ulmer, John R CIV USN SPAWARSYSCEN LANT SC (US) via OVAL_Developer <oval_developer@lists.cisecurity.org> wrote: > > Apologies, if this is redundant. But, I think I usually get a copy of email sent to the list, myself. And, I did not see one. So, I’m sending this again. Please see forwarded email below. > > From: Ulmer, John R CIV USN SPAWARSYSCEN LANT SC (US) > Sent: Wednesday, January 30, 2019 9:41 AM > To: oval_developer@lists.cisecurity.org <mailto:oval_developer@lists.cisecurity.org> > Subject: MacOS Gatekeeper test - Any design docs, anywhere? > > Morning All, > > Does anyone know where I can find some design/intended-use docs for the MacOS Gatekeeper test? The schema are a little vague. > > Thanks > > ---------------------------------------- > John R Ulmer > SPAWAR System Center Atlantic > John.r.ulmer6.civ@mail.mil <mailto:John.r.ulmer6.civ@mail.mil> > 843 218-5953 > > > > _______________________________________________ > OVAL_Developer mailing list > OVAL_Developer@lists.cisecurity.org <mailto:OVAL_Developer@lists.cisecurity.org> > http://lists.cisecurity.org/mailman/listinfo/oval_developer_lists.cisecurity.org <http://lists.cisecurity.org/mailman/listinfo/oval_developer_lists.cisecurity.org>
Empathy v1.0   2024 ©Harmonylists.com