Comments on: An even more secure OS X before Leopard.

By: tinzi's Blog

tinzi's Blog — Sun, 25 Mar 2007 12:18:49 +0000

Es soll ja immer noch Leute geben,…

die mit einem Mac unter OS Zehnpunktirgendwas mit dem Admin-Account die täglichen Dinge wie surfen, mailen und arbeiten erledigen. Das ist nicht so schlau, was man hier und hier oder auch hier nachlesen kann.

Also, was tun?

Ganz einfach:

1. S…

By: alxtoth

alxtoth — Sun, 18 Mar 2007 18:26:22 +0000

Hi, rebooting the Mac will restore the original firewall. I have a script to remove unneded lines, but how to integrate it in the OS X 10.4 boot process?

/sbin/ipfw show > /tmp/origrules

awk ‘/dst-port 137 in/ {print “/sbin/ipfw del”, substr($1,0,5)}’ /tmp/origrules > /tmp/newrules
awk ‘/dst-port 427 in/ {print “/sbin/ipfw del”, substr($1,0,5)}’ /tmp/origrules >> /tmp/newrules
awk ‘/dst-port 631 in/ {print “/sbin/ipfw del”, substr($1,0,5)}’ /tmp/origrules >> /tmp/newrules
awk ‘/dst-port 5353 in/ {print “/sbin/ipfw del”, substr($1,0,5)}’ /tmp/origrules >> /tmp/newrules
awk ‘/67 to me in/ {print “/sbin/ipfw del”, substr($1,0,5)}’ /tmp/origrules >> /tmp/newrules
awk ‘/5353 to me in/ {print “/sbin/ipfw del”, substr($1,0,5)}’ /tmp/origrules >> /tmp/newrules

chmod +x /tmp/newrules
sh /tmp/newrules

rm /tmp/origrules
rm /tmp/newrules

By: Talesh

Talesh — Tue, 13 Mar 2007 17:02:44 +0000

Great article but you dont explain how to set a open firmware password on an intel mac. My MBP keeps bypassing the Command-Option-O-F and boots like normal.

By: Curtis Jones

Curtis Jones — Tue, 13 Mar 2007 05:36:15 +0000

Hey … thanks for the link to GlowWorm FW … got quite a few visitors because of it. Good article, too.

By: Greg

Greg — Mon, 12 Mar 2007 23:16:10 +0000

You have your commands reversed in the disabling isight section. The chmod a-rwx should be the disabling command, and a+r should be the enabling command.

Ed. ; I screwed up. Put you in the article mate, thanks a lot.