Archive for category: Security

Proactive Mac Security: osquery

Proactive Mac Security: osquery

There are two reputations(at least) that your faithful writer is hoping to shake: #1, I do not work for Google. #2, I am not the ‘osquery guy’. I don’t even know any C++! (I’m going to make time for this eventually, though.) However, for three events over the course of […]

Read more

Proactive Mac Security, Introduction

Proactive Mac Security, Introduction

Let’s say your company is a place where no one works day-to-day logged in as an admin on their Mac. Everybody in this environment is also a computer expert, and therefore aren’t as prone to tomfoolery such as letting family members use their login to play Chrome games, and of […]

Read more

Thunderstrike Need-To-Know

Thunderstrike Need-To-Know

When we heard about the ‘bootkit’ exploit branded Thunderstrike having the potential to remove all of your security controls it was pretty disturbing. Luckily Apple controls a relatively small number of models, and released a patch for several affected CPU versions, bundling it with 10.10.2 so as to lessen the number […]

Read more

System Preferences Profiles in Mavericks (plus a Security Hole!)

System Preferences Profiles in Mavericks (plus a Security Hole!)

Profiles have become one of the most interesting components of the Apple ecosystem – both on OS X and on iOS. With their ability to easily control the functionality of the operating system, install certificates, and manage application preferences, along with their flexibility to use the same profile on desktop […]

Read more

XProtect Changes

Apple has pushed some changes to XProtect.  Rich Trouton has the details over on his blog.

Read more

FileVault Setup.app – A Local FV2 Setup App

FileVault Setup.app – A Local FV2 Setup App

As usual with all things FileVault related, Rich Trouton has the details on a new .app for setting up FileVault 2.  FileVault Setup.app is a standalone app that provides a pretty interface for end users to configure File Vault 2 with during first login.  This is a interesting way to […]

Read more

More Java Security Updates

Oracle has released a security patch for Java 7 on OS X which can be found here and Apple has released updates for Java 6 which can be found via Software Updates.  For more details on this release, check out Oracle’s security bulletin.

Read more

Useful Tool: XProtect Packager

If you have decided to disable the automatic update function of XProtect, then you will need a method for deploying the configuration files yourself.  These configuration files tell XProtect what the minimum allowed version is for the given plugins.  If the version of the installed plugin is less than this […]

Read more

Crypt FileVault 2 Solution now Beta

Graham Gilbert has an official post declaring Crypt to be in beta status.  Crypt is a great alternative to many of the paid solutions for FileVaule 2 escrow.  Rich Trouton gave us an early look at Crypt when it was more alpha-ish and it was looking really good.  It has […]

Read more
OS X,Security Comments are Disabled

Java update got you down? Re-enable it!

Rich Trouton has a writeup on how to re-enable the Java 6 plugin after the recent Software Update.  This update disables the Web Plug-in piece while leaving the actual Java 6 framework intact.  Many apps still require Java 6 (Crashplan for instance), so for many of us it may be […]

Read more