Slashdot Mirror

← Back to Stories (view on slashdot.org)

Securing Mac OS X Tiger

Posted by Zonk on from the intense-lockdown dept.

Stephen de Vries writes "Mac OS X is one of the most secure default installations of any OS. But it is still possible to lock the OS down further, in order to meet corporate security guidelines or to securely use network services. Corsaire has released a guide to Securing Mac OS X Tiger (long pdf) which addresses the new security features introduced through Tiger and presents some security good practice guidelines."

8 of 130 comments (clear)

  1. I once tried to secure a tiger by DrMrLordX · · Score: 5, Funny

    I put a tiger on a leash once.  It didn't work.  Don't try this at home, kids!

    1. Re:I once tried to secure a tiger by kcarlin · · Score: 5, Funny

      You should try the cage. I works for me.

      Does the tiger let you out for walks?

      --
      Free Adam Smith! (Or best offer.)
  2. Nice to see you... by Anonymous Coward · · Score: 5, Funny

    Nice to see Roy Horn has recovered enough to post on slashdot.

  3. Secure swap space by guildsolutions · · Score: 5, Informative

    One of the features that this article highlights is the Secure swap space, which allows you to have your swap space encrypted so that it cannot be read either unintentionally or intentionally. FileVault is fairly secure for storing business documentation, etc also. Article is well worth a read for any mac user, and non mac user who may have macs in their environment

  4. Wait for it... by bradleyland · · Score: 5, Funny

    Law enforcement agencies annouce that "OS X Tiger" stands in the way of forensic investigation. Story at eleven.

  5. Read before you sudo rm -rf / by JonTurner · · Score: 5, Informative

    Mildly funny, but also a bit irresponsible without a warning:

    Folks, sudo puts you into superuser mode and executes a command, rm. rm removes files, in this case, all of them.

    Unless you enjoy completely rebuilding a system and losing all your data files, don't run this command.

    Another tip: never enter console commands you don't understand.

  6. More securing OS X links/pdf's etc by Anonymous Coward · · Score: 5, Informative

    http://www.nsa.gov/snac/

    http://www.net-security.org/dl/articles/Securing_M ac_OS_X.pdf

    http://eq.rsug.itd.umich.edu/software/radmind/

    http://homepage.mac.com/hogfish/PhotoAlbum2.html

    Best tip (not a flame) - simply don't run any Microsoft software, support open or other vendors software please, also W3C standards, thanks.

  7. Re:Windows password hash storage by Anonymous Coward · · Score: 5, Informative

    Cortana: "By default, OS X stores your password as a nice secure hash. However, it also stores it using Windows' shitty hash method, that takes approximatly 0.000000001 seconds to brute force with John the Ripper"

    On Tiger, this is not true. In Tiger, one has to explicitly check a checkbox for each user, and enter that user's password, to allow those users to use Windows sharing. The sheet with these checkboxes states:

    "Sharing with Windows computers requires storing your password in a less secure manner. You must enter the password for each account that you want to enable."

    So, Windows file sharing is there, but Apple has not exactly made it easy to enable it.

    Given this UI, I guess that there is no way to secure this weakness in Windows file sharing without breaking compatibility.