<MAC OS 보안 자동 설치 툴_Stronghold>
MAC OS 세팅 후에 기본적으로 설정해 주어야 하는 항목들이며, 여기저기서 검색을 하다 우연히 발견한 내용입니다.
해당 툴을 사용하는 방법은 아래와 같으며 해당 내용은 위 출저에서도 바로 확인 가능합니다
Install with
pip$ pip install stronghold$ stronghold
Download the binary
stronghold from the Releases tab.
해당 툴에서 점검 및 설정하는 내용은 아래와 같습니다.
1. Firewall
- Turn on the Firewall?
This helps protect your Mac from being attacked over the internet.
- Turn on logging?
If there IS an infection, logs are useful for determining the source.
- Turn on stealth mode?
Your Mac will not respond to ICMP ping requests or connection attempts from closed TCP and UDP networks.
2. General System Protection
- Enable Gatekeeper?
Defend against malware by enforcing code signing and verifying downloaded applications before allowing them to run.
- Prevent automatic software whitelisting?
Both built-in and downloaded software will require user approval for whitelisting.
- Disable Captive Portal Assistant and force login through a browser on untrusted networks?
Captive Portal Assistant could be triggered and direct you to a malicious site WITHOUT any user interaction.
3. User Metadata Storage
- Clear language modeling metadata?
This includes user spelling, typing and suggestion data.
- Disable language modeling data collection?
- Clear QuickLook metadata?
- Clear Downloads metadata?
- Disable metadata collection from Downloads?
- Clear SiriAnalytics database?
4. User Safety
- Lock Mac as soon as screensaver starts?
- Display all file extensions?
This prevents malware from disguising itself as another file type.
- Disable saving documents to the cloud by default?
This prevents sensitive documents from being unintentionally stored on the cloud.
- Show hidden files in Finder?
This lets you see all files on the system without having to use the terminal.
- Disable printer sharing?
Offers redundancy in case the Firewall was not configured.
참고로 모든 것을 다 설정하실 필요는 없으며 자신이 필요하다고 생각되는 항목만 설정하시면 됩니다.
댓글 없음:
댓글 쓰기