Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Laptop security: The Big Picture
- Thread starter Doctor Q
- Start date
- Sort by reaction score
I thought the broadcast includes your network name (e.g., "myhomenet") so if you don't broadcast it then it's another piece of information that a hacker would need to learn or guess. In other words, if I name my wireless network "h7g9b514" and avoid the broadcasting, that name serves as a password. Is that right?
Not sure if this has made it into the list...
But beware of "shoulder surfers". Simply, be aware of your surroundings when typing in passwords.
But beware of "shoulder surfers". Simply, be aware of your surroundings when typing in passwords.
The problem is that this only prevents the accesspoint to adverse the ssid, but in the actual traffic (from the accesspoint and from the clients) the ssid will be transfered. But its right that you need "special" tools that are looking for those hidden ssids to find them. In OSX kismac in passive modus would be an example. It looks in the packets of the traffic and gets the ssid out of it (but im not 100% sure on this in kismac).
More information:
http://www.wi-fiplanet.com/tutorials/article.php/3576541
So to hide the ssid is not a bad idea when you want to make your network "invisible" to casual surfers who only want to check their mails, but its no security feature.
You can also write your name and address on your macbook with an infrared pen.
Doesn't stop it being stolen but at least it can be identified.
Doesn't stop it being stolen but at least it can be identified.
Thanks, Nightkrawler. That makes perfect sense. Hiding the SSID broadcast may help keep out casual intruders, not more sophisticated intruders.
We'll do that.
I wonder if a custom-painted laptop is less likely to be stolen because it would be easier to uniquely identify if offered for sale, or whether thieves grab first and think later. Come to think of it, a really bad paint job will make it unique AND prevent people from coveting it!
Great tips Dr.Q. Thank you very much.
I rarely secure my computer at all because I'm a lazy person I use Auto-Login, Auto-Fill,1Password etc. Got TimeMachine though
I rarely secure my computer at all because I'm a lazy person
I use Auto-Login, Auto-Fill,1Password etc. Got TimeMachine though 
How do you set a firmware password?
Is there anyway to encrypt the contents of an iDisk?
Most of my very secure stuff is stored on an IronKey. I love that thing. 10 wrong password attempts and it wipes out all the data. Try to pry the thing open to get the chip out and you destroy the chip.
Is there anyway to encrypt the contents of an iDisk?
Most of my very secure stuff is stored on an IronKey. I love that thing. 10 wrong password attempts and it wipes out all the data. Try to pry the thing open to get the chip out and you destroy the chip.
On the matter of malware... 1 simple rule... Use common sense. Even though Windows malware will not infect OSX, the progressively getting more popular OSX will attract malware writers. In other words, be on the lookout for malware (be it virus, spyware, keylogger, trojan, whatever).
Don't trust email. No one will send you a "get rich quick" thing that works, because that would mean they would be rich, and why share the wealth with a complete unknown? That screensaver you got in the mail by Anna Kournikova doing the horizontal dance is not a screensaver, but a trojan trying to lure you into installing. Your friends could be infected as well, so don't trust unrequested attachments. I regularly send my friends a message back with the simple question: "What did you just send, and why?".
Even though there is no OSX specific malware, there is still the open port on your computer so use the OSX firewall, or another one. Unless you want uninvited guests snooping around on your disc(s).
Wireless networks? Restrict access to certain MAC addresses, that way uninvited guests may see you but the router will keep them out. I don't want to deal with that so my network is wired. And it will entertain the cat for hours...
And from your favorite hated place the 10 Immutable Laws of (Computer) Security:
#1: If a bad guy can persuade you to run his program on your computer, it's not your computer anymore
#2: If a bad guy can alter the operating system on your computer, it's not your computer anymore
#3: If a bad guy has unrestricted physical access to your computer, it's not your computer anymore
#4: If you allow a bad guy to upload programs to your website, it's not your website any more
#5: Weak passwords trump strong security
#6: A computer is only as secure as the administrator is trustworthy
#7: Encrypted data is only as secure as the decryption key
#8: An out of date virus scanner is only marginally better than no virus scanner at all
#9: Absolute anonymity isn't practical, in real life or on the Web
#10: Technology is not a panacea
Don't trust email. No one will send you a "get rich quick" thing that works, because that would mean they would be rich, and why share the wealth with a complete unknown? That screensaver you got in the mail by Anna Kournikova doing the horizontal dance is not a screensaver, but a trojan trying to lure you into installing. Your friends could be infected as well, so don't trust unrequested attachments. I regularly send my friends a message back with the simple question: "What did you just send, and why?".
Even though there is no OSX specific malware, there is still the open port on your computer so use the OSX firewall, or another one. Unless you want uninvited guests snooping around on your disc(s).
Wireless networks? Restrict access to certain MAC addresses, that way uninvited guests may see you but the router will keep them out. I don't want to deal with that so my network is wired. And it will entertain the cat for hours...
And from your favorite hated place the 10 Immutable Laws of (Computer) Security:
#1: If a bad guy can persuade you to run his program on your computer, it's not your computer anymore
#2: If a bad guy can alter the operating system on your computer, it's not your computer anymore
#3: If a bad guy has unrestricted physical access to your computer, it's not your computer anymore
#4: If you allow a bad guy to upload programs to your website, it's not your website any more
#5: Weak passwords trump strong security
#6: A computer is only as secure as the administrator is trustworthy
#7: Encrypted data is only as secure as the decryption key
#8: An out of date virus scanner is only marginally better than no virus scanner at all
#9: Absolute anonymity isn't practical, in real life or on the Web
#10: Technology is not a panacea