You can adjust all of your Mac's security and privacy settings in a single preference pane. Open System Preferences — from the Dock or the. By default, the security and privacy preferences of your Mac are set to allow apps from the App Store and identified developers. For additional.
FileVault: These controls allow you to turn on FileVault hard drive encryption, which makes it virtually impossible for others to access files on your Mac. If you forget both your login password and the recovery key, not even the technical experts at Apple can retrieve your data! Firewall: Mac OS X includes a built-in firewall, which you can enable from this pane. To turn the firewall off entirely, simply click the Stop button.
This is the very definition of Not a Good Thing; any MacBook hooked up to a network or the Internet should have the system firewall turned on. When the firewall is enabled, click the Advanced button to set firewall options.
To turn the firewall on with only Mac OS X application exclusions, click Block All Incoming Connections — only the sharing services you select on the Sharing pane in System Preferences are allowed through your firewall. This is a good choice for the most security-conscious MacBook owner, but your firewall will block third-party applications that try to access your network or the Internet. Yep, this is the correct option for just about every MacBook owner.
I describe the Sharing pane in detail later in this chapter. Safari will populate the password and password confirmation field for you, though you can accept or reject the supplied password. The account password will be stored in Safari, and synced with your other Apple devices using iCloud.
Strong passwords can be automatically generated and inserted into password fields when you sign up for a new service. To use Automatic Strong Passwords, launch Safari and browse to a website for which you would like to create a login account.
Reusing passwords can be a disaster waiting to happen. Safari can audit your website passwords and point out when you reuse a password multiple times. The passwords that Safari has remembered for you will be displayed. If any passwords are being reused, Safari will mark them with a yellow warning placard. Clicking or tapping one of the warning symbols will display details about the warning, including where the password is being reused, and a link to the current site, so you can quickly go there and change the password.
Intelligent Tracking Prevention 2. The original version of ITP used a hour window to allow some cross-site tracking on the assumption that some web-based services would break if there were a complete elimination of cross-site tracking.
An example of a site failing because of the inability to use cross-site tracking would be a banking or financial services site that uses persistent cookies to allow a login to a central server, which allows you to access multiple related services without having to log in to each individually. ITP 2 removes the hour window, and instead will throw a prompt up asking if you wish to allow a third-party site to access its stored cookies. Selecting Allow will let the third-party site access its cookies, as well as reset a day timer, allowing another 30 days before those cookies are expunged.
If you would like to find out more about ITP 1.
Fingerprinting Protection Fingerprinting is a method that allows sites to build up enough information to be able to distinguish one computer from another that visits it. The site can do this without setting or using cookies.
Fingerprint protection seeks to make the information a site can gather more generic, making it more difficult to uniquely identify you. This is done in multiple ways:.
Fingerprint protection should help prevent your Mac from having a unique identity, though it may be some time before that goal is achieved. Right now, only a few days after the release of macOS Mojave, my Mac is seen as having a unique identifier at various sites that will test website fingerprinting you can find a list of test sites at the link above.
Mojave requires new Safari extensions to be acquired from the Mac App Store, where they can be checked for the presence of known malware.
Removing old plugins and only allowing extensions from the Mac App Store should help fortify Safari by eliminating them as possible malware attack vectors. Later versions of Gatekeeper included the ability to isolate your data from apps that were attempting to access it. If an app or service needed information from any of those apps, you had to explicitly give it permission to do so.
Mojave adds camera, microphone, and automation.
Additionally, Gatekeeper controls access to Mail, Messages, iTunes, and Time Machine backups, as well as Safari browsing information, cookies, and call history, but does so under a group setting.