Make OS X More Secure Now

Posted Mar 12th 2007 6:00PM by Mat Lu
Filed under: How-tos, Tips and tricks, Terminal Tips, Security

I just ran across this nice two part series (easier part one, more advanced part two) discussing some ways to improve security in Tiger while waiting for Leopard to come along. The author, Sebastiaan de With, discusses some unfortunate choices made by Apple with regards to, among other things, firewall, networking, and Bluetooth settings, and offers suggestions for how to fix these and other potential problems. He also offers some good ideas for portable Mac users.

Now inevitably these sorts of considerations (much like security practices in air travel) involve weighing convenience against safety. I know a lot of my own practices (e.g. auto-login, running as administrator) are dangerous, but it's hard to break bad habits. What other security advice do you think is important?

graphic: Sebastiaan de With

[Via Digg]

Tags: bluetooth, firewall, security

Reader Comments (Page 1 of 1)

1

3-12-2007 @ 6:50PM

Ulf Dahlen said...

Well, the author seems to think you are running as root in a standard OS X setup. This is not correct. You are in the Unix admin group and an "Administrator", but that is not root. Although not as safe as running as a non-Administrator, it's not as dangerous as running as root or running as an Administrator in Windows (where you are in effect "root").

Also, I've tried to run as a non-Administrator, and it works very well. Just create a new Administrator account, login as that user and demote yourself (the original account). You get more prompts in daily use, but it's OK.

BUT: what's the point? With a little bit of careful surfing, you are extremely unlikely to get into trouble when using OS X. I even run some Windows boxes as Administrator without anti-virus or anti-spyware software, and it works file. JUST BE CAREFUL. THINK BEFORE CLICKING!

Reply

2

3-12-2007 @ 7:28PM

Luigi said...

I dont really think this is nessesary.

Ive had no problems with Tiger for quite a while. Is there even any point to running non-admin?

Reply

3

4-23-2007 @ 1:34PM

trever said...

Some software chokes during install, and then runs strangely after the fact unless you install it as an admin user etc. (Yes, i have pointed out the problems with their installer to the culprit in this case, namely DxO Optics Pro).

Overall though, running as a non-admin user worked well enough for me but I didn't really see any actual additional benefit given lack of exploits in general for admin-level users etc.

Reply

Mac News

Macworld (497)

.Mac (38)

Accessories (624)

Airport (75)

Analysis / Opinion (1290)

Apple (1607)

Apple Corporate (546)

Apple Financial (185)

Apple History (38)

Apple Professional (49)

Apple TV (160)

Audio (441)

Bad Apple (119)

Beta Beat (146)

Blogging (87)

Bluetooth (15)

Bugs/Recalls (56)

Cult of Mac (868)

Deals (199)

Desktops (114)

Developer (204)

Education (93)

eMac (10)

Enterprise (126)

Features (372)

Freeware (362)

Gaming (344)

Graphic Design (16)

Hardware (1269)

Holidays (41)

Humor (585)

iBook (65)

iLife (237)

iMac (183)

Internet (304)

Internet Tools (1287)

iPhone (1341)

iPod Family (2017)

iTS (958)

iTunes (792)

iWork (18)

Leopard (355)

Mac mini (109)

Mac Pro (50)

MacBook (196)

MacBook Air (77)

Macbook Pro (214)

Multimedia (430)

Odds and ends (1414)

Open Source (270)

OS (889)

Peripherals (190)

Podcasting (181)

Podcasts (83)

Portables (195)

PowerBook (137)

PowerMac G5 (50)

Retail (571)

Retro Mac (47)

Rig of the Week (42)

Rumors (608)

Software (4206)

Software Update (393)

Steve Jobs (252)

Stocking Stuffers (55)

Surveys and Polls (96)

Switchers (111)

The Woz (34)

TUAW Business (227)

Universal Binary (281)

UNIX / BSD (61)

Video (908)

Weekend Review (74)

WIN Business (49)

Wireless (80)

XServe (35)

Mac Events

One More Thing (27)

Liveblog (0)

Other Events (231)

WWDC (180)

Mac Learning

Ask TUAW (96)

Blogs (85)

Books (23)

Books and Blogs (63)

Cool tools (444)

Hacks (462)

How-tos (480)

Interviews (33)

Mods (184)

Productivity (582)

Reviews (99)

Security (145)

Terminal Tips (56)

Tips and tricks (558)

Troubleshooting (160)

TUAW Features

iPhone 101 (23)

TUAW Labs (3)

Blast From the Past (17)

TUAW Tips (141)

Flickr Find (32)

Found Footage (70)

Mac 101 (80)

TUAW Interview (30)

Widget Watch (196)

The Daily Best (2)

TUAW Faceoff (4)

RESOURCES

• Send us news tips
• Contact Us
• Advertise
• Corrections?
• Problems?

RSS NEWSFEEDS

• Main RSS Feed
• Feeds by category

Sponsored Links

Advertise on TUAW

Featured Galleries

 

Most Commented On (7 days)

• TUAW Faceoff: Screenshot apps on the firing line (66)
• The OS X desktop as music video (62)
• Adium adds Facebook Chat support; emo kids cheer worldwide (60)
• Mac 101: External HDs (59)
• You're gonna have to face it ... (54)
• Rumor: .Mac relaunch to coincide with iPhone 2.0? (53)
• Broken iPod: fix it or replace it? (48)
• The philosophy of iMac (45)
• VMware Fusion 2.0 Beta 1 (43)
• Here Comes A Special Boy... (41)

Recent Comments

• Torley on The OS X desktop as music video
• Kizorblade on SingTel confirms iPhone for Singapore, India, the Philippines and Australia
• Tom on AppleScript: download YouTube videos
• Macskeeball on AppleScript: download YouTube videos
• Ryan Humphreys on AppleScript: download YouTube videos
• Dave on TUAW preview: Schmap for iPhone & iPod Touch
• Dinesh on AppleScript: download YouTube videos
• Luigi193 on AppleScript: download YouTube videos
• The Tuesday Night Tech Show on AppleScript: download YouTube videos
• Ryan Trevisol on AT&T: free iPhone wifi is coming at some point

More Apple Analysis

• AAPL on BloggingStocks The Apple category feed from BloggingStocks.com
• AAPL Quote, News & Summary The AAPL financials page from AOL Money and Finance
• iPhone analysis from BloggingStocks iPhone tag feed from BloggingStocks
• Macintosh news and reviews on Download Squad The Macintosh category feed from Download Squad

More from AOL Money and Finance

• Stock Screener
• Stock Quotes
• DJIA
• AMT
• Auto Loans
• Banking
• Car Insurance
• Checking Account
• Credit Cards
• Credit Reports
• Debt Management
• Dow Jones Industrial Average
• Earnings
• GOOG
• Health Insurance
• Home Insurance
• Identity Theft
• Income Tax Basics
• Insurance
• Life Insurance
• Loans
• Money
• Mortgages
• Personal Loans
• Recession
• Refinancing
• Retirement
• Savings Account
• Small Business
• Stock Charts
• Stock Ticker
• Taxes
• Tech News

Weblogs, Inc. Network

• Autos
  • Autoblog
  • AutoblogGreen
  • Autoblog Spanish
  • Autoblog Chinese
  • Autoblog Simplified Chinese
• Technology
  • Download Squad
  • Engadget
  • Engadget HD
  • Engadget Mobile
  • Engadget Chinese
  • Engadget Simplified Chinese
  • Engadget Japanese
  • Engadget Spanish
  • Switched
  • TUAW (Apple)
• Lifestyle
  • AisleDash
  • DIY Life
  • Gadling
  • Green Daily
  • Luxist
  • ParentDish
  • Slashfood
  • Styledash
  • That's Fit
• Gaming
  • Joystiq
  • DS Fanboy
  • Massively
  • Nintendo Wii Fanboy
  • PS3 Fanboy
  • PSP Fanboy
  • WoW Insider
  • Xbox 360 Fanboy
• Entertainment
  • Cinematical
  • TV Squad
• Finance
  • BloggingBuyouts
  • BloggingStocks
  • WalletPop
• Also on AOL
  • African-American Culture
  • Autos
  • Games
  • Maps
  • Money
  • Movies
  • Music
  • News
  • Radio
  • Sports
  • Television
  Travel

More on AOL: Money, Investing, Bonds, Broker Center, Currency, ETF Center, Futures, International Markets, Mutual Fund Center, Stock Charts, Stock Quotes, Stock Screener, Portfolios, Personal Finance, Personal Loans, Finance Calculators, Money Basics, Retirement, Taxes, Market News, Small Business

All contents copyright © 2003-2008, Weblogs, Inc. All rights reserved

The Unofficial Apple Weblog (TUAW) is a member of the Weblogs, Inc. Network. Privacy Policy, Terms of Service, Notify AOL