Top 10 free ways to secure your Mac
Time to shed your naivety and get serious about OS X security. The BackDoor.FlashBack trojan is a wake up call for all Mac users — here are 10 easy (and free) things you can do right now to make your Mac more secure and stay infection free.
#1 Turn off Java in Safari — The BackDoor.FlashBack trojan is infecting Macs running out of date Java, creating a 600,000-plus Mac botnet, likely the largest in history. An easy way to obviate the threat is to turn off Java in Safari
— Safari > Preferences > Security > Deselect Enable Java
— See also: Mother of all Mac botnets? BackDoor.Flashback.39 spreads
#2 Keep Mac OS X up-to-date — Another way to obviate the Flashback threat is to install the latest version of OS X, Safari and, of course, Java. Apple regularly updates it operating system and other software for security and stability. To get the latest updates, run Software Update at least once a week and install the available patches and fixes.
— Apple (menu) > Software Update
#3 Turn off automatic login — Is someone using your Mac when you’re away? The way to prevention unauthorized users from gaining access to your Mac is to off automatic logic, which will forces a user to provide the admin password before it can be used.
— System Preferences > Accounts > Login Options > Automatic Login > Off
#4 Use strong passwords — Create and use eight-character or longer passwords that include numbers and alpha characters with at least one capital letter. Better still, get and use a helper app, such as 1Password (Mac App Store, 30-day trial).
#5 Turn on OS X’s Firewall — The downside of always on, always connected internet is that internet attackers can get access to your Mac. Don’t make it easy for them and prevent unauthorized users from remotely accessing your Mac.
— How to: Turn on OS X’s Firewall
#6 Turn off “Open safe files…”
— Here in the second decade of the 21st Century, there are no safe downloads. DMG, MP3, JPEG, PDF, Microsoft Word and other common file types can be used to attack and take control of your Mac. Turning off “Open safe files” helps prevent drive by web attacks.
— Safari Preferences > General > Uncheck “Open safe files…”
#7 Turn off unnecessary Sharing services — If you’re not sharing a printer or need to share files, turn those services off, doing so closes off potential avenues of attack. Likewise if you’re not using wi-fi or don’t have a Bluetooth mouse or keyboard, then obviate these vulnerabilities by turning them off.
— System Preferences > Sharing > Uncheck unneeded services
#8 Turn off unnecessary Sharing services —
— System Preferences > Network > Airport > Turn Airport Off
— System Preferences > Bluetooth > Uncheck “On”
#9 Download and use antivirus software — I’ve been using ClamXav (Mac App Store) for years and the only things it’s ever found is phishing heuristics or PC viruses in emails (i.e. no real threat). Sooner or later, some eager and evil beaver will create Mac-specific malware and I’ll be glad this app runs nightly on my Mac. Further, I’ve set it up to continuously scan my email and download folders.
— There are free and generally well regarded versions of Sophos and Virus Barrier (30-day trial).
#10 Download from trusted sources only — Pirated software (a.k.a. warez), music, images, TV shows and movies can all be used to transmit malware and infect your Mac. It’s important to only download software and other file types from the source vendors and, if you do find it “necessary” to stray into the shadows, make you’ve installed antivirus software and have it set up to automatically scan your Downloads folder.
— The corollary to this rule is don’t click emailed links or open email attachments
Share your tips for keeping your Mac safe and clean in the comments…
While not free, Little Snitch is terribly useful for catching programs trying to “phone home” and to block them doing so. Is there a free alternative for this?
I practice all of these coming from windows I arrived cautious and remain diligent. Never doubted one day they would start pestering us too. Sophos is super easy to let run in the back ground.
The closest thing to free that I found was Hands Off:
http://www.macupdate.com/app/mac/35277/hands-off!
which offers a 30-day trial. There are command line methods, but that’s probably not what you had in mind.
OpenDNS says that if you use its free DNS service, it will protect you from Flashback.
I’ve just downloaded and installed Sophos Anti-Virus software, and it says there are 5 virus/malware. I’ve also scanned with ClamXav and Flashback and BOTH these softwares say my iMac isn’t infected. So why the discrepancy? I suspect Sophos – coming from a company that SELLS and HOPE to sell (more) anti-virus softwares is merely listing the virus/malwareinfection so that we end up buying their software. I’m uninstalling Sophos. This message/feedback is to warn users not to bother installing the Sophos anti-virus software. Plus, based on the feedback from users, I still haven’t heard of any saying their Macs have ACTUALLY being infected.
I forgot to mention this. I even ran the Terminal commands – as per what has been written on some sites – and again, NO virus/malware.
False positives are a fairly common occurance regardless of which AV app is used. You need to take a look at what Sophos found. It’s overwhelmingly likely that it found phsishing heuristics (email) or some sort of PC malware that won’t directly affect your Mac — have a second look and lets us know what you found
[...] See also: Top 10 free ways to secure your Mac [...]
[...] Flashback, but not all variants — Apple lays Mac App Store double authentication groundwork — Top 10 free ways to secure your Mac — Mother of all Mac botnets? BackDoor.Flashback.39 spreads — OpenDNS blocks Flashback [...]
[...] it’s worth, I stopped arguing and installed ClamXav, which is free, on my Macs years ago — Top 10 free ways to secure your Mac… Recent security posts: — Apple ships stand-alone Flashback Malware Removal Tool [...]
[...] That said, get safe and stay safe — Top 10 free ways to secure your Mac… [...]
I question the integrity of software companies based on past performance. To my mind they are in effect self serving and dollar motivated.
[...] I have been beating this drum for years, though it’s only recently become fashionable to recommend every Mac user install and use antivirus software. But that’s just one of the free and easy steps you should take to secure your Mac. [...]
[...] Mac fans, yuck it up, but take Clulely’s admonition to heart and protect yourselves by taking common sense steps, including using antivirus [...]
[...] run Software Update and get the latest patches from Apple, and then get with the program. Securing your Mac takes little [...]
[...] See also: Top 10 free ways to secure your Mac [...]
[...] in about four minutes and unsurprisingly found nothing as I’m a ClamXav user that keeps a tight lid on security. RAM usage remained relatively constant at a modest 360MB, though CPU usage regularly spiked above [...]
[...] That bit of boilerplate describes a smart feature Apple has built into Java that removes the plugin, essentially eliminating Java-based security threats. I take that notion to the next level by disabling Java manually until it’s needed, which is just one of the free and easy things you can do to keep your Mac secure — Top 10 free ways to secure your Mac. [...]
[...] 出處:http://fairerplatform.com/2012/04/top-10-ways-to-secure-your-mac/ [...]
Leave your response!
Recent Posts
Popular Posts
The ROCR on the web
Most Commented
Most Viewed
Powered by WordPress | Entries (RSS) | Comments (RSS) | Privacy Policy