How do you configure new MBA?

Discussion in 'MacBook Air' started by sfs244, Oct 18, 2012.

  1. sfs244 macrumors newbie

    Joined:
    Aug 6, 2008
    #1
    Just got my new MBA 13", upgrading from a pre-unibody MBP. What changes do you usually make to the default settings when you get a new computer, and are there any utilities/software apps you install (not talking about Adobe or anything just stuff to make computer run efficiently/more secure) when you upgrade?
     
  2. GGJstudios macrumors Westmere

    GGJstudios

    Joined:
    May 16, 2008
    #2
    For security, I recommend the following:
    1. Make sure your built-in Mac firewall is enabled in System Preferences > Security > Firewall

    2. Uncheck "Open "safe" files after downloading" in Safari > Preferences > General

    3. Disable Java in your browser (Safari, Chrome, Firefox). This will protect you from malware that exploits Java in your browser, including the recent Flashback trojan. Leave Java disabled until you visit a trusted site that requires it, then re-enable only for the duration of your visit to that site. (This is not to be confused with JavaScript, which you should leave enabled.)

    4. Change your DNS servers to OpenDNS servers by reading this.

    5. Be careful to only install software from trusted, reputable sites. Never install pirated software. If you're not sure about an app, ask in this forum before installing.

    6. Never let someone else have access to install anything on your Mac.

    7. Don't open files that you receive from unknown or untrusted sources.

    8. For added security, make sure all network, email, financial and other important passwords are long and complex, including upper and lower case letters, numbers and special characters.

    9. Always keep your Mac and application software updated. Use Software Update for your Mac software. For other software, it's safer to get updates from the developer's site or from the menu item "Check for updates", rather than installing from any notification window that pops up while you're surfing the web.
    That's all you need to do to keep your Mac completely free of any Mac OS X malware that has ever been released into the wild. While you may elect to use it, 3rd party antivirus software is not required to keep your Mac malware-free.
    For maximizing performance, this may help:

    Use iStat Pro (free) or iStat Menus ($16) to get accurate readings of your battery, temps, fan speeds and much more.

    This may be useful:

    Helpful Information for Any Mac User
    Portables Fast Start: The New User's Guide to Apple Notebooks
     
  3. Mrbobb, Oct 18, 2012
    Last edited: Oct 18, 2012

    Mrbobb macrumors 601

    Joined:
    Aug 27, 2012
    #3
    One of the first thing when I got my brand new machine was to install Carbon Copy and made a back up of my Clean OS to an external drive. Subsequently I'd make regular images of the OS (12G clean, 18G with apps), so whenever I feel anything weird, just restore to last known-to-be-good. I have read one can do that with Time Machine but with anything that does incremental backup I don't trust it. Because infection is a way of life no matter how careful one is and I don't feel like be on my tip toes and working for the dang machine instead of it working for me. Restore to last known-to-be-good image, 15-20 mins and am back in business.

    This method also allows u to "go back" to an earlier OS, in short order. The latest OS update may not be the greatest as less informed people tell you. U got a saved image, going back is easy-wizzy.

    Ur mileage may vary.
     
  4. jsgreen macrumors 6502

    Joined:
    Nov 27, 2007
    Location:
    NH
    #4
    Also set an EFI (Firmware) password, prevents people from re-installing the OS and wiping the drive.

    Turn on FileVault drive encryption

    Also check out services like Crashplan for online backup
     
  5. halledise macrumors 65816

    Joined:
    May 7, 2009
    Location:
    Hamilton Island, Whitsundays, QLD Australia
    #5
    geez, you guys sound a tad paranoid to me to be suggesting all those thingies.
    especially turning on File Vault!
    I'd only do that if Jason Bourne was on my tail ;)
     
  6. sfs244 thread starter macrumors newbie

    Joined:
    Aug 6, 2008
    #6
    Wow really good suggestions and thanks for the quick response! I have filevault on my current machine and java off, but had no idea about the other things to check...glad I asked
     
  7. Frosties macrumors 6502a

    Frosties

    Joined:
    Jun 12, 2009
    Location:
    Sweden
    #7
    My advice is the app store program 1password if you use hard and long passwords.

    Please let your dns servers be those with fast and correct look up. For most people that is your local service providers dns servers. Skip the opendns servers.

    Better yet don't change your internet settings from advice given by a user that has no clue about your network.
     
  8. GGJstudios macrumors Westmere

    GGJstudios

    Joined:
    May 16, 2008
    #8
    Frequently, the DNS servers provided by local ISPs are not the fastest available. The OP didn't ask about speed, but security. For that reason, the OpenDNS servers are recommended, as they enhance security over many other DNS servers. If performance is the primary goal, as stated in the link I posted:
    It is not necessary for someone to know about your network to make an intelligent recommendation about DNS servers.
     
  9. Frosties macrumors 6502a

    Frosties

    Joined:
    Jun 12, 2009
    Location:
    Sweden
    #9
    Taking baseless advice from a post regarding something as important as dns servers is not good.

    Anyway, you just hit a nerve. I have seen this pasted advice here before and it goes against basic network security. EOL
     
  10. GGJstudios macrumors Westmere

    GGJstudios

    Joined:
    May 16, 2008
    #10
    If you took the time to click the links and read, you'd know the advice is not baseless and why OpenDNS servers are recommended. Which DNS servers you use has nothing to do with what network you are on. You have offered no facts to show why OpenDNS servers are not a wise choice. Simply claiming something in bold text doesn't make it valid.

    Your post suggests you have a bit more to learn about the role DNS servers play and about the process of selecting them.
     
  11. Frosties macrumors 6502a

    Frosties

    Joined:
    Jun 12, 2009
    Location:
    Sweden
    #11
    My use of bold text was just made to differ from your text. Nothing more. I challenged your statement regarding dns security. Clicking on a link to a statement that is copied in a post is no better than reading it in a post directly. It's just the same statement over again. OpenDNS can be fine to use. But your statement that their dns servers are more secure is just a statement. Opendns servers are not better secured, than say sunets dns servers. Have opendns one of the seven keys to the internet?

    Search the phrase "Key To The Internet" for more info.

    And if a network had unsecure dns servers leave that network in total. Staying with a unsecure network is just stupid and shouldn't be given as advice.
     
  12. GGJstudios macrumors Westmere

    GGJstudios

    Joined:
    May 16, 2008
    #12
    Apparently, you still haven't read the post to see why OpenDNS does provide security that some other DNS servers don't. Since you don't appear inclined to click the links I've provide and read, I'll spell it out for you:

    OpenDNS Community > Blog > Worried about Mac malware? Just set up OpenDNS.
    It's not just a statement. It's fact. Read above.
    I didn't attempt to survey all DNS servers in existence. OpenDNS servers are better than many and are well known. I never suggested that they are the most secure servers in existence or that there might not be other alternatives. They are better than many, and therefore merit a recommendation.
    You don't need to leave an ISP just because its DNS servers aren't secure. You don't have to use the DNS servers offered by your ISP. You can use any DNS servers you choose. You should never leave your computer's security up to your ISP, anyway.
     
  13. Mrbobb macrumors 601

    Joined:
    Aug 27, 2012
    #13
    I probly wont encrypt anything, the world is not *that* interested in my life! :)

    The stuff I put in the "cloud" maybe... just so that they don't know who to spam.
     

Share This Page