Free Republic
Browse · Search 		General/Chat
Topics · Post Article

To: Richard Kimball

LOL... Ahhh..., good, then. That’s a really nice computer to have.

Okay, get “Little Snitch. Run that and all your connections will need to be okayed by you, or you can set rules to pre-approved certain ones and not others. It will operate on the “processes” that you see in Activity Monitor window.

Little Snitch
http://www.obdev.at/products/littlesnitch/index.html

I also use IPNetMonitor, and keep a window open over on the side that shows any network activity. If I see something going on (and I don’t think there is supposed to be any), then I can check both Little Snitch (which shows the live connections at the time) and also “Activity Monitor” (a program included by Apple, already there).

IPNetMonitor
http://www.sustworks.com/site/prod_ipmonitor.html

This one will do all sorts of TCP/IP checks and test. You can do a dump of all your connections going on at the time and see exactly what each one is doing (if you want).

Also, I use “The DoorStop X Security Suite”
http://www.opendoor.com/doorstopsuite/

This will enhance the built-in firewall on OS X and give you additional tools. The enhanced logging capabilities are well worth it. You can also check the logs on the system for any accesses that were not supposed to be done.

Those logs are available in the “Console” program (included by Apple). You can check the “console.log” and the “system.log” files (they’re available on the left side panel of the program).

With all that, you should know what’s going on with your system, in “real-time” and also, see if anyone has accessed your computer while you weren’t looking.

Another little clue as to what activity has been going on with your computer since the last time you used it, you can use a program to check the last time files were “accessed” on your computer. Now, the operating system itself will access many things as it operates in the background, but it won’t access your own personal files; it only accesses its own stuff that it has to do in order to operate. If you check the last accesses (let’s say) in the last six hours or so, that will tell you if anyone has accessed anything on your computer while you were gone. You can see exactly where someone went, by looking at the “accesses” of the files...

I use “File Buddy” for this operation...
http://www.skytag.com/filebuddy/

I’ve had that one forever, it seems (along with these other programs, above, too. With File Buddy, you can search and access all sorts of things on your computer that you would never know was there.

I might mention one other program, too. If you want to see where programs are installing things (little file fragments here and there) and remove everything when you get rid of the program, you can use the program CleanApp

CleanApp webpage
http://synium.de/products/cleanapp/index.html

And also, although there is not much of a problem with viruses and other malware, I do have...

VirusBarrier X5 from Intego
http://www.intego.com/virusbarrier/

Check out all those, and if you do all of them, you’ll have your computer locked down pretty solid, for anyone or anything getting in and messing up stuff.

Of course, there are other utilities, too, for checking the health of your system and doing certain maintenance and stuff, but I’m not mentioning those. I’m pretty much talking about the security of the machine here...

[ P.S. — did you ever find that one-armed guy? :-) ... ]


29 posted on 03/07/2009 3:45:19 AM PST by Star Traveler
[ Post Reply | Private Reply | To 24 | View Replies ]

To: Star Traveler

Your links. Are they only for Macs?


34 posted on 03/07/2009 5:51:57 AM PST by shaft29 (Just your typical black woman.)
[ Post Reply | Private Reply | To 29 | View Replies ]
To: Star Traveler

Thanks for all of that info, it’s great.
I don’t use any of those programs, but will check them out today.

I currently have a 24” iMac, top of the line with the Intel Core 2 Duo CPUs. I’ve also had the full-boat Mac Pro laptop. My recommendation for anyone buying a Mac is to get it as loaded up as much as you can afford, CPU, RAM, storage, display. The incremental costs to move up are well worth it.


39 posted on 03/07/2009 7:25:10 AM PST by frankenMonkey
[ Post Reply | Private Reply | To 29 | View Replies ]
To: Star Traveler

Looks like an excellent, well rounded, layered set of protections you itemized there in post #29. I have a brand new Macbook Pro, and I’ll probably be in market for some of those tools later as well, but for now am testing the “Apple’s are impenatrable” inferrence we commonly hear and enjoying the great performance.

So before I bog this thing down with all those port trackers and blockers like I have (and actually need) on my Windows systems, since you have all that capability active, can you perhaps answer what may be causing the Mac to constantly attempt incrementing UDP port scans on the network in the 40,000 - 50,000 range?

I’m logging a few new hits through that range every minute or so on all the other systems on my network, and this is the only reference I’ve been able to find on the internet so far, but it sounds like the exact same thing I’m seeing:

http://discussions.apple.com/thread.jspa?threadID=1478203

As that poster said I’ve been seeing this on a new system that doesn’t have much on it, although I did load Firefox as that poster indicated as well. Thanks in advance for any ideas you may have. Little Snitch is already downloaded but I’m really wanting to keep this thing clean as long as possible. Thanks again.


51 posted on 03/07/2009 3:23:39 PM PST by Golden Eagle (In God We Trust)
[ Post Reply | Private Reply | To 29 | View Replies ]

Free Republic
Browse · Search 		General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson