Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

Read the NSA's OS X Security Guide System
This flew across slashdot a couple days ago, but I don't see it here. NSA (the USA's National Security Agency) has posted the 'Apple Mac OS X v10.3.x "Panther" Security Configuration Guide' [3.1MB PDF] on their site. Here's the introductory blurb:
The purpose of this guide is to provide an overview of Mac OS X v10.3.x "Panther" operating system security and recommendations for configuring the security features. This guide provides recommended settings to secure systems using this operating system, and points out problems that could cause security concerns in systems using this operating system.

This document is intended for anyone managing a locally-administered Apple Mac OS X v10.3.x system. It is assumed that anyone using this guidance will have some experience using Mac OS X, and understands the basics of the Mac OS X user interface.
I'm about halfway through it (it's almost 100 pages long), and have already found some of its insights interesting.

[robg adds: I also mention this guide at the end of the Opener malware report today, but felt it was worth mentioning separately. I'm almost done reading the guide, and there are some nice tidbits in there. It's also overkill for most users to implement everything they recommend, but it will get you thinking about security, which is a good thing.]
  • Currently 2.60 / 5
  You rated: 4 / 5 (5 votes cast)

Read the NSA's OS X Security Guide | 2 comments | Create New Account
Click here to return to the 'Read the NSA's OS X Security Guide' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Read the NSA's OS X Security Guide
Authored by: jmacak on Nov 01, '04 03:55:08PM

I'd be very interested in the "insights" and "tidbits" that readers find interesting in this guide (in case I miss them as I plod through it). Thanks!


[ Reply to This | # ]
Read the NSA's OS X Security Guide
Authored by: baltwo on Nov 01, '04 05:09:03PM

There's at least one error in the document, and there may be more.

I found this on Page 31:

"It is necessary to boot from an installation disk because the utility cannot fix permissions on the partition where the system is currently running."

AFAIK, that's not true. With Panther, you can repair permissions on any volume that has Mac OS X installed on it. In fact, Disk Utility will use the Receipts from that volume and not those on the current startup volume.

[ Reply to This | # ]