What does HackerNews think of macOS-Security-and-Privacy-Guide?

macOS Mail.app -> Preferences -> Viewing -> Uncheck "Load remote content in messages"

Privacy defaults come down to usability vs. privacy; Apple making this so easy to toggle is fine by me as I care about privacy and tracking.

Now, it would be great if every macOS application walked you through privacy settings right after installation in the same way that I am offered a tour of the new features. Since there is no such "privacy tour", the community has discussed ways in which macOS can be hardened [1], [2].

1. https://github.com/drduh/macOS-Security-and-Privacy-Guide

2. https://news.ycombinator.com/item?id=18099835

I think the turning off FindMy one really depends on where you fall on the security-usability spectrum. For example if you want to truly harden your Mac there is a ton of steps you can take, but they get gradually more intrusive to the experience of actually using the system: https://github.com/drduh/macOS-Security-and-Privacy-Guide

The sources I recall while writing this:

- https://github.com/drduh/macOS-Security-and-Privacy-Guide

- https://github.com/CISOfy/lynis

- https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.s...

- https://help.apple.com/machelp/mac/10.12/index.html#/mh11389

- http://newosxbook.com/files/moxii3/AppendixA.pdf

Hope it helps!

Yes, with some effort: https://github.com/drduh/macOS-Security-and-Privacy-Guide

You probably could with the same amount of effort for Windows, but at least Windows makes it more clear that it is happening.

Are there any good analyses out there of what telemetry OSX sends?

I did find this which is interesting and helpful:

https://github.com/drduh/macOS-Security-and-Privacy-Guide

Not sure, haven't come across it. Here's a pretty paranoid setup, can't totally vouch for it though https://github.com/drduh/macOS-Security-and-Privacy-Guide