4 Replies Latest reply: Jul 13, 2017 6:28 AM by ajs RSS

mac os scan

donniewu Apprentice

I previously found some discussions on scanning Mac OS before on this forum but I can't seem to find it again. I have ran a few scans against these servers but they don't seem to find much. The last scan I ran was just a basic scan and it only came back with a few warnings. I feel like I should be seeing more vulnerabilities. How do I go about scanning Mac OS servers? Also what is the name of the report that will list the vulnerability and the solution so I can pass it along to the admin?

 

 

I have credentials to the servers and sudo access.

  • Re: mac os scan
    nsanders Expert

    I'm scanning a test group of macOS systems via Nessus Agents and its found out of date software and other critical issues. I have not compared this to a credentialed scan via the network.

  • Re: mac os scan
    ajs Novice

    Verify the following

     

    Mac OS X

    Create an Administrator Account

     

     

    1. Go to System Preferences from the Apple Menu.

    2. Select Accounts (User & Groups for 10.8).

    3. If locked:

    a. Unlock by clicking the lock icon.

    b. Enter Administrator username and password to unlock preferences.

    4. Click the Add button below list of accounts.

    5. New Account pop-up window is displayed.

    6. Change Account Type from Standard to Administrator.

    7. In the Account Name enter name (example: acas_scan).

    8. In the Password & Verify Password fields enter password for account.

    9. Click Create User.

    10. Select Allow user to administer this computer to give user administrative privileges.

     

     

    Turn on Remote Login for Scan Account

     

     

    1. Go to System Preferences from the Apple Menu.

    2. Click Sharing icon under Internet & Wireless section.

    a. Unlock by clicking the lock icon.

    b. Enter Administrator username and password to unlock preferences.

    3. Select Remote Logon check box.

    4. Under Allow Access for select Only these users.

    5. Add the newly created scan account (example: acas_scan).

     

     

    Configure Application Firewall

     

     

    1. Go to System Preferences from the Apple Menu.

    2. Select Security.

    3. Click the Firewall tab.

    4. If locked:

    a. Unlock by clicking the lock icon.

    b. Enter Administrator username and password to unlock preferences.

    5. Click the Add button below list of accounts.

    6. Click Start to enable the firewall.

    7. Click Advanced to customize the firewall configuration.

    8. Uncheck Enable stealth mode and Block all incoming connections.