{"description": "GNOME allows users to create ad-hoc wireless connections through the\nNetworkManager applet. Wireless connections should be disabled by\nadding or setting disable-wifi-create to true in\n/etc/dconf/db/local.d/00-security-settings. For example:\n[org/gnome/nm-applet]\ndisable-wifi-create=true\n
\nOnce the settings have been added, add a lock to\n/etc/dconf/db/local.d/locks/00-security-settings-lock to prevent user modification.\nFor example:\n/org/gnome/nm-applet/disable-wifi-create
\nAfter the settings have been set, run dconf update.", "rationale": "Wireless network connections should not be allowed to be configured by general\nusers on a given system as it could open the system to backdoor attacks.", "severity": "medium", "references": {"cui": ["3.1.16"]}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": "WIFI connections can be created through GNOME", "ocil": "To ensure that WIFI connections caanot be created, run the following command:\n$ gsettings get org.gnome.nm-applet disable-wifi-create
\nIf properly configured, the output should be true.\nTo ensure that users cannot enable WIFI connection creation, run the following:\n$ grep wifi-create /etc/dconf/db/local.d/locks/*
\nIf properly configured, the output should be\n/org/gnome/nm-applet/disable-wifi-create", "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": null, "platforms": [], "sce_metadata": {}, "inherited_platforms": ["package[gdm]"], "cpe_platform_names": [], "inherited_cpe_platform_names": ["package_gdm"], "bash_conditional": null, "fixes": {}, "title": "Disable WIFI Network Connection Creation in GNOME3", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/software/gnome/gnome_network_settings/dconf_gnome_disable_wifi_create/rule.yml", "template": null}