Security considerations prior to hardware service

Aug 11, '06 07:30:01AM

Contributed by: soulbarn

I recently shipped my MacBook Pro back to Apple for replacement of a humming motherboard. The technician asked me to give him my login password, and to consider setting (in the Users System Preferences pane) the machine to automatic login, which I preferred not to do.

In thinking about this, it occurred to me that private info is scattered all over my machine. I also remembered, years ago, that when I shipped a laptop to a manufacturer (not Apple, of course) for repair, it never arrived. So, I came up with a security procedure that makes it as easy on the technician as possible -- but also tough on any thieves who may come in contact with the machine.

So, don't disable your administrator password or set it to automatic login. Instead, consider creating a special account for the technician. I created one called REPAIR with a four-digit password; I gave the password to AppleCare over the phone, and enabled automatic login or that account. I also used the MacPilot utility to modify the text that appear on the log-in screen to TECHNICIAN - PLEASE USE REPAIR ACCOUNT. THANKS!

You might consider putting a sticker on the case of the computer stating the same thing. Whether you do or don't create a repair account, put a label on the case, in a prominent location, saying FOR PASSWORD ASSISTANCE, PLEASE CALL nnn-nnn-nnnn. That's much better than writing your password on the form you'll be submitting to Apple.

Finally, back up your data. The best solution is to image your hard drive with a program like Carbon Copy Cloner or SuperDuper. I'd also recommend using Apple Backup to create a backup of your keychains, Address Book, etc., and any other personal data and settings you have.

Read on for some other things to consider if you're sending a machine away for service...

Here are some other things you may wish to do in the interest of general security, prior to sending your machine in for service:

For the truly paranoid: I'm not totally sure of the best way to secure your Mail messages would be; I'd welcome feedback on that.

[robg adds: There are some good ideas in here if you're taking a step-by-step approach to securing your personal data prior to sending your machine back. My approach is somewhat different: in the two cases where I've had to send machines back to Apple, I wiped the machine clean and reinstalled the OS with a dummy Repair account.

Obviously, before I did this, I built a bootable backup of the entier system using either Carbon Copy Cloner or SuperDuper. I then verified that the backup was complete and usable, and then reinstalled OS X with a format and install. When the machine came back, I simply restored my full backup, and I was right back where I started, without any fear of what might happen to my data if the machine were to be lost.]

Comments (18)


Mac OS X Hints
http://hints.macworld.com/article.php?story=20060807110717532