PF Firewall Audit - Mac
Log In or Register to download the BES file, and more.

0 Votes

Description

Audit of pf firewall for Mac OS X References: http://www.openbsd.org/faq/pf/? http://support.apple.com/kb/HT200259?viewlocale=en_US?

Property Details

ID2994651
StatusBeta - Preliminary testing ready for more
TitlePF Firewall Audit - Mac
DomainBESC
Keywordsfirewall osx mac
Added by on 6/13/2014 9:09:05 AM
Last Modified by on 6/13/2014 9:10:47 AM
Counters 6175 Views / 10 Downloads
User Rating 1 star 2 star 3 star 4 star 5 star * Average over 0 ratings. ** Log In or Register to add your rating.

Properties

Lines of /etc/pf.conf
Period 7 days
 
  * Results in a true/false
Show indented relevance
lines whose (it does not start with "#" AND it as trimmed string != "") of file "/etc/pf.conf"
Lines of Load Anchor in /etc/pf.conf
Period 1 day
 
  * Results in a true/false
Show indented relevance
lines whose (it does not start with "#" AND it as lowercase contains "load anchor") of file "/etc/pf.conf"
Files Loaded as Anchor
Period 1 day
 
  * Results in a true/false
Show indented relevance
following texts of lasts "%22" of preceding texts of lasts "%22" of lines whose (it as lowercase contains "load anchor") of file "/etc/pf.conf"
Number of Lines in /etc/pf.conf
Period 1 day
 
  * Results in a true/false
Show indented relevance
number of lines whose (it does not start with "#" AND it as trimmed string != "") of file "/etc/pf.conf"
Number of Lines of Load Anchors in /etc/pf.conf
Period 1 day
 
  * Results in a true/false
Show indented relevance
number of lines whose (it does not start with "#" AND it as lowercase contains "load anchor") of file "/etc/pf.conf"
ProgramArguments of PF LaunchD
Period 7 days
 
  * Results in a true/false
Show indented relevance
strings of values of array of values of entries whose (key of it = "ProgramArguments") of dictionary of file "/System/Library/LaunchDaemons/com.apple.pfctl.plist"
PF LaunchD Enabled
Period 6 hours
 
  * Results in a true/false
Show indented relevance
exists strings whose (it as lowercase = "-e") of values of array of values of entries whose (key of it = "ProgramArguments") of dictionary of file "/System/Library/LaunchDaemons/com.apple.pfctl.plist"
Lines of Files Loaded as Anchors in /etc/pf.conf
Period 7 days
 
  * Results in a true/false
Show indented relevance
lines whose (it does not start with "#" AND it as trimmed string != "") of files (following texts of lasts "%22" of preceding texts of lasts "%22" of lines whose (it as lowercase contains "load anchor") of file "/etc/pf.conf")
Lines of Files, by Filename, Loaded as Anchors in /etc/pf.conf
Period 7 days
 
  * Results in a true/false
Show indented relevance
(name of it, concatenation "%0A" of lines whose (it does not start with "#" AND it as trimmed string != "") of it) of files (following texts of lasts "%22" of preceding texts of lasts "%22" of lines whose (it as lowercase contains "load anchor") of file "/etc/pf.conf")

Relevance

Used in 228 fixlets and 100 analyses   * Results in a true/false
Show indented relevance
mac of operating system
Used in 1 analsis   * Results in a true/false
Show indented relevance
exists file "/etc/pf.conf"

Sharing

Social Media:
Share this page on Yammer


Comments

Log In or Register to leave comments!
 

Content

Search
Share
Learn
Projects

Utilities

View SCM Scripts
Base64 Converter
Shell to Action Script

About

About Us
Tour
FAQ
Terms
Contact Us

BigFix Resources

Download BigFix
Support
Forum
Github/Bigfix
bigfix.me All Content
Hosted on bigfixme-as