Slashdot Mirror

← Back to Stories (view on slashdot.org)

OS X Leopard Firewall Flawed

Posted by kdawson on from the block-what-i-say dept.

cycoj writes with a report in the German IT magazine Heise, taking a look at the new OS X Leopard firewall. They find it flawed. When setting access to specific services and programs to only allow SSH access, for example, they found that a manually started service was still accessible. From the article: "So the first step after starting Leopard should be to activate the firewall. The obvious choice to do so is the option to 'Set access to specific services and programs,' which promises more control over network traffic. Mac OS X automatically enters all shared resources set up by the user, such as 'Remote login' for SSH servers, into the list of accessible resources... However, initial functional testing quickly dispels any feeling of improved security. A service started for testing purposes was able to be addressed from outside without any difficulty. The firewall records this occurrence... Even with the firewall set to 'Block all incoming connections' ports to netbios, ntp and other services were still open... Specifically these results mean that users can't rely on the firewall."

4 of 300 comments (clear)

  1. As any new OS by El+Lobo · · Score: 4, Interesting

    As any new OS out there, these are childre diseases. Every new system will have problems: small problems and big problesm. The difference is that some will get praise anyway and some others will get "defectivebydesign" or "haha" tags.

    --
    It's time to realise that Abble's products are the biggest abomination these days. Just say NO to the dumb iAbble way!!
  2. Re:Never put your eggs in one basket. by Anonymous Coward · · Score: 5, Interesting

    Couldn't you argue that more layers = more possibilities for attack vectors?
    Also, FYI, a hardware firewall is just a dedicated software firewall.

  3. Wait a second... by CompMD · · Score: 5, Interesting

    I thought it was illegal for Germans to do this kind of investigation now. Is it? I mean, it requires "hacking tools."

  4. Re:Investigation flawed, more like by Cally · · Score: 4, Interesting

    you could argue that reading the documentation for a new firewall would be a useful thing to do as well.

    Er, yeah, but... these are Mac users you're talking about. The people who've been sold a computer that ordinary people can use without being computer experts, and which doesn't get viruses like Windows does. (Not counting the Linux refugees, of course.)

    --
    "None are more hopelessly enslaved than those who falsely believe they are free." -- Goethe