| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 81646 | 2007-08-02 12:35:00 | OS X - Firewall query | myke (7862) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 575570 | 2007-08-02 12:35:00 | Been talking with my tech support about the fact that our MacBooks and MacBook Pros go offsite without the Firewall enabled. They seem to think that as long as there are no active shares on the machines then security will not be such a problem with no Firewall up. I know Apple fans can get a bit laid back on security, but can anybody give me some intelligent feedback on this? I find this odd, as in the Windows world a Firewall down is like dumb! Anybody know Macs or Firewalls enough to fill me in? Taaa. Anyway August 7th apparently Steve has something to say. What could it be? $10 says, the 17" is so yesterday and the mouse loses that stupid nipple. |
myke (7862) | ||
| 575571 | 2007-08-02 13:13:00 | Wait for winmacguy to give you some feedback AND tell you how ignorant you are about thinking that the nipple is stupid:lol::lol: | beeswax34 (63) | ||
| 575572 | 2007-08-02 13:16:00 | I turn the OS X Firewall on for the macs I look after at work (after making one exception for a network backup app). The firewall GUI that OS X provides basically just stops incoming packets (like Windows XP). See here (www.macworld.com) for a review. The underlying firewall is very customisable (including outgoing etc) through the command line and there are third party GUI apps Usually every sharing service for a mac is controlled under the sharing System Preference e.g. Web Server, Apple File Sharing, Samba, SSH etc. With Tiger though you have Bonjour on (and turning it off breaks things). As always, you should be installing the Security Updates that Apple releases. In general, OS X doesn't have lots of odd services/apps listening for traffic. If there is no service running, a firewall doesn't help. A real problem is giving people Administrative privileges with OS X as they seem to install (and bypass the firewall) Limewire at first opportunity. :groan: Also they may start running a SSH server and get it comprised due to a weak password (as soon as you enable a sharing service it will add an exception to the firewall and it is open to all IP addresses). |
gibler (49) | ||
| 575573 | 2007-08-02 14:23:00 | and you can test your security here (www.grc.com). not sure how good this site is, but have heard of lots of people using it | plod (107) | ||
| 1 | |||||