Looking through OS options, you can only disable apps from using cellular data, so no functionality that rivals AfWall2+ or other solutions on Android. Googling for "apple firewall" shows that other than (Little Snitch) for iOS on desktops, there's really not much in way of firewalls for Apple's mobile devices, other than this somewhat gimmicky solution, and that app is apparently the only one of its kind, i.e an actual firewall for iOS mobile, and it seems to be doing it in the same way that non-rooted apps try to do content filtering on Android Do a kind of VPN thing, so that means no actual VPN on the side. Like I said, I have a bit of experience with OSX (it's my preferred O.S as well) and have done forensics on OSX machines in the past.Īll of that seems like the standard "please don't do X, Y or Z" stuff - Not much in the way of actual control there. You can also use Knock Knock (free software) to see if there is any persistently installed malware on your computer.Īnd finally you could use task explorer to see what processes are doing on your computer (network connections, loaded libraries, etc).įeel free to reach out via PM if you have questions about any of this software. You can use little snitch (there is a free trial) to monitor outbound network connections (this is really important as anyone who wants to "spy" on you would want to connect to the internet to pull the data off your computer). There are a few avenues that I would take in this case. Sorry to hear about your troubles with your ex boyfriend.Ĭomparing running processes from one machine to another wouldn't be super productive. I work in information security and have been a security engineer at an organization that uses mainly mac machines. I'm using Cookies Manager in FF for this, but I assume other alternatives exist. Banning cookies from most invasive domains (eg Google and many ad networks).I should really be running all browsing out of its own VM. Sensitive things like work and bank related issues are run from their own dedicated browser in their own dedicated VM.Nameservers that claim to be authoritative for Apple and a number of other hosts, including most social media.Everything over a VPN whenever possible.Most privacy/security related things in system preferences set to be as hobbled as possible.Disable Spotlight searching external volumes.Disable anything network related in Spotlight.Apple has a way around this with physical access, which means everyone else does as well. Enable firmware password in an effort to prevent booting off other media.Just log for a day or two with tcpdump and everything set to as private as possible and you'll see.īeyond that, not counting what you've already done: The problem with disabling things in OSX is that it still sends plenty of data out. It works quite well and is well worth the money in my opinion. Try Little Snitch for blocking individual applications and hosts. Some of them are quite suspicious in nature, like " PasswordBreachAgent" sending signatures of your Safari used/saved passwords upstream to see if any have been compromised.ĭid you know that was running all the time? It is. Light up Little Snitch in Block/Alert mode and watch how many hundreds of services try to phone home without your consent or knowledge. You can also heavily filter the network ingress/egress, and see what's really going on.You get what they allow you to get, not the entire writable space, end to end. You can't easily do that on Apple itself, and no. You can snapshot before, during and after you make changes, install software, configure services, and so on. You can't even come close with the available Apple hardware, even maxed out. I have an 88-core/256GB machine here and I can throw ALL of those cores at a single macOS VM, or over-commit multiple CPUs on several other machines I have here. For me, it's because I can exceed the RAM, CPU that Apple's own metal can provide. A lot of people are asking "Why?", and I too have been doing this for YEARS under VMware Workstation and ESXi.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |