Reprinted from TidBITS by permission; reuse governed by Creative Commons
license BY-NC-ND 3.0. TidBITS has offered years of thoughtful commentary
on Apple and Internet topics. For free email subscriptions and access to the
entire TidBITS archive, visit http://www.tidbits.com/


   Take Control of Security for Mac Users, Chapter 4: Beef Up Your
   Security Settings

   Joe Kissell

   This article is a pre-release chapter in the upcoming 'Take Control of
   Security for Mac users,' by Joe Kissell, scheduled for public release
   later in 2015. Apart from [1]Chapter 1: Introducing Mac Security, and
   [2]Chapter 2: Learn Security Basics, these chapters are available only
   to [3]TidBITS members; see [4]'Take Control of Security for Mac Users'
   Streaming in TidBITS for details.
     __________________________________________________________________

Chapter 4: Beef Up Your System Settings

   In the previous chapter we looked at some of the easiest changes you
   can make to improve your Mac's security, several of which involved
   simple changes to settings. In this chapter we continue with some
   settings that require a bit more explanation and thought. That includes
   a discussion of OS X's Gatekeeper and sandboxing security features,
   some basics for using user accounts more securely, and a couple of
   quick suggestions about sharing files, your screen, and other
   resources. Except as noted, this chapter applies to people at every
   risk level.

Manage App Sources

   Since Apple released Mountain Lion in 2012, OS X has had an important
   security feature called Gatekeeper. (Apple later added Gatekeeper to OS
   X 10.7.5 Lion too.) Even though you won't see the word 'Gatekeeper'
   anywhere in OS X (Apple mentions it in marketing materials, on the
   [5]OS X Security page, and in developer documentation), Gatekeeper
   affects how you install and use software.

   Gatekeeper examines downloaded apps either when they're installed (if
   they use an installer) or when they're run for the first time. If the
   app doesn't meet the criteria you select, Gatekeeper blocks the app
   from running. The point is to prevent malicious software (including
   software that has been modified without your knowledge) from causing
   damage or stealing data. Gatekeeper can also protect you from apps that
   have been modified after the fact. It does all this thanks to the
   concept of signing an app.

   The rest of this 4,673-word article is currently restricted to paid
   TidBITS members. If you'd like to support our work and [6]become a paid
   member, it's an easy process and we'll throw in some additional perks.

   If you are a paid TidBITS member, you can read the rest of this article
   by logging into your account. Clicking My Account > Login at the left.
   [7]Contact us if you have problems.

References

   1. http://tidbits.com/article/15376
   2. http://tidbits.com/article/15377
   3. http://tidbits.com/member_benefits.html
   4. http://tidbits.com/article/15375
   5. https://www.apple.com/osx/what-is/security/
   6. file://localhost/member_benefits.html
   7. mailto:ace@tidbits.com

.