What does HackerNews think of macOS-Security-and-Privacy-Guide?

Guide to securing and improving privacy on macOS

Language: Python

#12 in macOS
#8 in Security
Ask HN: What do you do for online privacy? | Nov 2022
- 1Password

- Fastmail (block images in email, which are often used for tracking)

- Privacy.com

1Password integrates with both of the above, so that any time I sign up for a new service it will get a random, unique email from Fastmail (masked email), a unique credit card from privacy.com, and I use 1Password to generate not only a unique, strong password but also a unique username (hence my current username here, squeegee_scream).

- sync.com for online storage. it's e2ee

- MFA everywhere it's available

- 1Blocker

- nextdns

- use privacy-respecting alternative frontends:

  - use invidious instead of youtube
  
  - libreddit or teddit instead of reddit
  
  - nitter instead of twitter
- macos, following https://github.com/drduh/macOS-Security-and-Privacy-Guide for hardening (I haven't compared this to other hardening guides, but doing something is better than nothing)

- rotate my usernames on social sites on a regular basis. I'm really only active on reddit and HN, but I'm still concerned about being doxxed

- avoid buying things from amazon

- Signal app for communication as often as possible

Hardening macOS | May 2021
Discussion from the last time this was posted in 2018 - https://news.ycombinator.com/item?id=18099835

Also the macOS Security and Privacy Guide may be of interest

https://github.com/drduh/macOS-Security-and-Privacy-Guide

as discussed on HN last year https://news.ycombinator.com/item?id=24242890

Spy pixels in emails 'have become endemic' | Feb 2021
Expand Context ↕
macOS Mail.app -> Preferences -> Viewing -> Uncheck "Load remote content in messages"

Privacy defaults come down to usability vs. privacy; Apple making this so easy to toggle is fine by me as I care about privacy and tracking.

Now, it would be great if every macOS application walked you through privacy settings right after installation in the same way that I am offered a tour of the new features. Since there is no such "privacy tour", the community has discussed ways in which macOS can be hardened [1], [2].

1. https://github.com/drduh/macOS-Security-and-Privacy-Guide

2. https://news.ycombinator.com/item?id=18099835
NSA's Tips to Keep Your Phone from Tracking You | Aug 2020
Expand Context ↕
I think the turning off FindMy one really depends on where you fall on the security-usability spectrum. For example if you want to truly harden your Mac there is a ton of steps you can take, but they get gradually more intrusive to the experience of actually using the system: https://github.com/drduh/macOS-Security-and-Privacy-Guide
Ask HN: How do you secure your Mac? | Apr 2019
I follow some parts on Bejarano's [0]. It was discussed on HN https://news.ycombinator.com/item?id=18099835 (6 months ago)

macOS Security and Privacy guide [1] also a recommendation you can try.

[0]: https://blog.bejarano.io/hardening-macos.html

[1]: https://github.com/drduh/macOS-Security-and-Privacy-Guide

Hardening macOS | Sep 2018
Very interesting! I’m reading it quite thoroughly so I don’t have any immediate thoughts but this did remind me of another similar guide in the spirit of things if you haven’t seen it:

https://github.com/drduh/macOS-Security-and-Privacy-Guide

Very good also if you liked this

Hardening macOS | Sep 2018
Expand Context ↕
The sources I recall while writing this:

- https://github.com/drduh/macOS-Security-and-Privacy-Guide

- https://github.com/CISOfy/lynis

- https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.s...

- https://help.apple.com/machelp/mac/10.12/index.html#/mh11389

- http://newosxbook.com/files/moxii3/AppendixA.pdf

Hope it helps!
Hardening macOS | Sep 2018
For those who want more: https://github.com/drduh/macOS-Security-and-Privacy-Guide
Ask HN: Tips on securing a MacBook Air? | Mar 2018
Good and detailed guide: https://github.com/drduh/macOS-Security-and-Privacy-Guide
Announcing the Windows Bounty Program | Jul 2017
Expand Context ↕
Yes, with some effort: https://github.com/drduh/macOS-Security-and-Privacy-Guide

You probably could with the same amount of effort for Windows, but at least Windows makes it more clear that it is happening.
Ask HN: Your approach to security on the Mac | Apr 2017
If you haven't read through this before, it's worth a read.

https://github.com/drduh/macOS-Security-and-Privacy-Guide

Microsoft opens up on Windows telemetry, tells us most of what data it collects | Apr 2017
Expand Context ↕
Are there any good analyses out there of what telemetry OSX sends?

I did find this which is interesting and helpful:

https://github.com/drduh/macOS-Security-and-Privacy-Guide
Ask HN: New Macbook pro late 2016, good tips to setup, try new features, etc? | Dec 2016
https://github.com/drduh/macOS-Security-and-Privacy-Guide
Shazam Keeps Your Mac’s Microphone Always On, Even When You Turn It Off | Nov 2016
Expand Context ↕
Not sure, haven't come across it. Here's a pretty paranoid setup, can't totally vouch for it though https://github.com/drduh/macOS-Security-and-Privacy-Guide