Details
The Safari browser contains a feature which causes all files considered ‘safe’ to be automatically opened once they have finished downloading.
Rationale:
This feature is meant to be a benefit but having the browser automatically open files that could be malicious and downloaded by mistake is a security risk.
Solution
Follow the below steps to set Open ‘safe’ files after downloading to Disabled:
1. Click Safari.
2. Click Preferences.
3. Click General.
4. Uncheck the Open ‘safe’ files after downloading checkbox.
To configure the plist follow the below steps:
1. Open the com.apple.Safari.plist.
2. Find the token
3. Ensure this token is immediately followed by
Default Value:
Enabled.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Unix.