Slashdot Mirror

← Back to Stories (view on slashdot.org)

Securing Mac OS X Tiger

Posted by Zonk on from the intense-lockdown dept.

Stephen de Vries writes "Mac OS X is one of the most secure default installations of any OS. But it is still possible to lock the OS down further, in order to meet corporate security guidelines or to securely use network services. Corsaire has released a guide to Securing Mac OS X Tiger (long pdf) which addresses the new security features introduced through Tiger and presents some security good practice guidelines."

5 of 130 comments (clear)

  1. Does default matter? by Poromenos1 · · Score: 4, Insightful

    If you're going for corporate security, you're probably going to look at every aspect you need to lock down. Security by default matters for 90% of desktop users, but don't you disable services/add firewalls as soon as you set up your OS?

    --
    Send email from the afterlife! Write your e-will at Dead Man's Switch.
    1. Re:Does default matter? by Halfbaked+Plan · · Score: 3, Insightful

      You're nuts if you think 'the biggest roadblock' is some tacit conspiracy by IT staffers.

      --
      resigned
  2. staying secure by jacklexbox · · Score: 3, Insightful

    Security still depends on the user of the software, even the most secure system can be opened WIDE up if someone chooses (or chooses without knowing) to make it so. You can have everything encrypted, but if your password is easily guessable then your encryption is weak. This goes with the thought that "A system is only as secure as it's weakest point."

  3. Re:Read before you sudo rm -rf / by eneville · · Score: 3, Insightful

    An especially never enter console commands on /. rated anything other than informative, even that is a bad idea. Never enter a console command without first reading the man page, yes it's long and could be a bore, but its not as boring as restoring from backups (if you have backsups of some important directory that you forgot about).

    --
    Why UNIX?
  4. Easy as any O/S to secure... by Nick+Driver · · Score: 4, Insightful

    Without even R'ing the FA, I can tell you that truly securing the Mac OS is just as easy as truly securing any other OS.

    1) Unplug it from any network.
    2) Strictly control whoever gets physical access.
    3) ???
    4) Security!

    Seriously... after watching some dipshit try over 4,000 times within the span of a couple hours to attempt buffer overflows on every listening port on my honeypot last Friday afternoon, before I finally blacklisted his entire class C from my router, I've come to the same conclusion that the DoD has... that NO computer connected to the Internet can be made secure... period... that you should only connect disposeable devices to the public Internet.

    I even wonder if I'm not the bigger dipshit for sitting there watching this idiot half the afternoon, throwing the kitchen sink at my poor machine in vain, before pulling the plug on him and banishing his whole netblock.