Mac Security Bible [Paperback]

Joe Kissell (Author)

Book Description

Publication Date: January 7, 2010 | ISBN-10: 047047419X | ISBN-13: 978-0470474198 | Edition: 1

Your essential, no-holds-barred guide to Mac security threats and solutions

Myth number one: Macs are safer than PCs. Not really, says author Joe Kissell, named one of MacTech's "25 Most Influential People" in the Mac community for 2008. In this timely guide, he not only takes you beyond the myths, he also delves into the nitty-gritty of each potential threat, helping you weigh the pros and cons of the solutions you might choose. Learn to measure risk versus inconvenience, make informed decisions, and protect your Mac computers, your privacy, and your data with this essential guide.

• Explains the security threats to Macs, including data in transit from your e-mail or network, and malware such as viruses, worms, and Trojan horses; these threats, formerly the exclusive worry of PC users, now increasingly threaten Macs
• Explores physical security and hardware barriers, software settings, third-party solutions, and more
• Shows Mac OS X users how to develop and enforce security policies
• Covers security for Windows running on a Mac with Boot Camp, virtualization software such as Parallels Desktop or VMware Fusion, and more

Learn the full range of options you need to consider to make your Mac safe.

Note: CD-ROM/DVD and other supplementary materials are not included as part of eBook file.

Editorial Reviews

From the Back Cover

How safe is your Mac?

Are Macs safer than PCs? Despite their bulletproof reputation, Macs are vulnerable to malware, network snooping, password cracking and, of course, physical theft (with all your data) — just like PCs. The good news is that there's a lot you can do, and this plain-English guide tells you what and how. Discover seven things you should do right now, understand the trade-offs between risk and convenience, set up your solutions, and keep your Mac safe with this practical book.

• Discover what security is built into Mac OS X and how to configure it

• Explore physical security, hardware barriers, software settings, and third-party solutions

• Communicate safely using IM, VoIP, e-mail, and the web

• Learn how to secure one or multiple Macs in wired or wireless networks

• Perform network and vulnerability scanning and use forensic tools

• Run Windows applications safely and securely on a Mac

• Secure Mac OS X Server with Kerberos, SSL, and VPNs

About the Author

Joe Kissell was named one of MacTech's 25 most influential people in the Mac community for 2007. He's a senior contributor to Macworld and the senior editor of TidBITS, a website and weekly email newsletter about Macintosh and the Internet. Joe has worked in the Mac software industry since the early 1990s, including positions managing software development for Nisus Software and the Kensington Technology Group. He's the author of numerous books on Mac software.

Product Details

• Paperback: 936 pages
• Publisher: Wiley; 1 edition (January 7, 2010)
• Language: English
• ISBN-10: 047047419X
• ISBN-13: 978-0470474198
• Product Dimensions: 9.2 x 7.4 x 2 inches
• Shipping Weight: 3 pounds (View shipping rates and policies)
• Average Customer Review: 4.8 out of 5 stars  See all reviews (40 customer reviews)
• Amazon Best Sellers Rank: #146,303 in Books (See Top 100 in Books)

More About the Author

Joe Kissell is Senior Editor of TidBITS, a Web site and email newsletter about the Macintosh and the Internet, and the author of numerous print and electronic books about Macintosh software, including Take Control of Mac OS X Backups and Take Control of Running Windows on a Mac. He is also a Senior Contributor to Macworld and was the winner of a 2009 Neal award for Best How-to Article. Joe has worked in the Mac software industry since the early 1990s, and previously managed software development for Nisus Software and Kensington Technology Group. He has been on MacTech's list of the 25 most influential people in the Macintosh community since 2007. When not writing about Macs, Joe likes to cook, travel, walk, watch movies, and practice t'ai chi. He also runs a number of Web sites, including JoeKissell.com and the popular Interesting Thing of the Day (itotd.com). Joe lives in Paris with his wife, Morgen Jahnke, their son, Soren, and their cat, Zora.

Customer Reviews

Most Helpful Customer Reviews

8 of 8 people found the following review helpful:

5.0 out of 5 stars Not for the casual user!, December 20, 2010

By 

Claire Jordan "Filmmaker - "The Baroness ... (New Orleans, LA) - See all my reviews
(VINE VOICE)    (TOP 500 REVIEWER)   

This review is from: Mac Security Bible (Paperback)

(What's this?)

This is definitely a book written by and for tech-heads. I consider myself a little bit of a geek, having used Macs for design, video and educational purposes since the mid-1980's. If not a full-fledged geek, I am at least very comfortable managing and administering my Macs myself with few serious mistakes or issues over the years. Even with this comfort level, I found that this book provides vastly more than I would or could ever use.

Perfect for an IT person or a user who needs to understand every (metaphorical) nut and bolt in his or her system, but if you are just looking for some tips on how to tighten up the basic security of your Mac, this book may end up being a bit more than you are interested in digesting.

That said, the writing is clear, concise, and meticulously organized. The parts that addressed my areas of interest were very well presented and easy to understand, but I definitely bit off more than I am interested in chewing when I ordered this book.

8 of 8 people found the following review helpful:

4.0 out of 5 stars Ignorance is not bliss, September 23, 2010

By 

Paul E. Richardson "Russian Life" (Montpelier, VT) - See all my reviews
(VINE VOICE)   

This review is from: Mac Security Bible (Paperback)

(What's this?)

I have been using a Mac for going on 20 years. Right now, I've got two running for business use and a handful around the house, including one hooked up for TV streaming. So I am very comfortable with Macs and don't feel shy about noodling around under the hood. And I have more or less bought into the conventional wisdom that Macs are inherently more secure than PCs, so a 900-page book on Mac security seemed a bit over the top.

And then I cracked Kissell's book.

Over the top it is not. Sure, there is lots of stuff in here that even a hard-core, desktop only user can skim (e.g. certificates, Terminal and loads of stuff on Mac OS Server), and there is plenty that anyone with their head screwed on half-straight can just skip (backing up, setting up secondary user accounts, etc.). But each user has different needs, and Kissell plays no favorites. He delves in just deep enough on all fronts to make this book invaluable to everyone, from the newbie to the bithead. The chapters on securing your web browsing, avoiding malware, and securely deleting files ought to be required reading. And the detailed explanations of how to secure wired and wireless networks are important for anyone who has this responsibility. Throughout, the writing is very clear, the instructions cogent and well-illustrated.

The bottom line is one Kissell notes early on: "by far the biggest threat to Mac security is you"... you and conventional wisdom, that is. Complacency is your enemy and ignorance of the dangers lurking out there is nothing like bliss. Yes, a Mac is far and away a more secure and safe machine than a PC. But "more secure" is not enough. There are plenty of areas for vulnerability, and with this book and an hour of two reading the bits most relevant to you, you can lock down your Mac and prove conventional wisdom right.

5 of 5 people found the following review helpful:

5.0 out of 5 stars Top notch reference!, October 20, 2010

By 

John A. Suda (Rochester NY) - See all my reviews
(VINE VOICE)   

This review is from: Mac Security Bible (Paperback)

(What's this?)

Regarding an operating system which has had exactly NO viruses (in the wild) since its introduction, you would think it impossible to write 900 pages (including index) on security for the Macintosh. In the "The Mac Security Bible," author Joel Kissel, has done just that and has justified his efforts by providing a thoroughly comprehensive guide. There is much more to security than immunizing a machine or network from viruses. In regard to most other security vulnerabilities, the Mac is no less susceptible to hardware threats, social engineering attacks, network snooping, password cracking, and more.

The author is aa accomplished book writer and authors articles for MacWorld magazine, Tidbits, and others. He writes in amazing scope and depth here on technology topics without being ponderous. The book is written in plain English, straightforward and systematically, and covers both OS 10.5 and 10.6 (Leopard and Snow Leopard). Most sections of the book are heavily cross-referenced with in-line references to topics elsewhere in the book or online sources.

The book is framed by three major foci: protecting hardware, data, and privacy; understanding threats and their solutions; and balancing risks versus ease of work. There are five parts dealing with Mac security basics, privacy, network security and sharing resources, OS X server issues, and advanced security topics. Problems and solutions dealing with Apple's MobileMe cloud services system and other online services are covered as well as running Windows in the Mac. The book is not meant for enterprise situations but for the ordinary Mac user, although the coverage is deep, advanced, and provides more than enough information and guidance for even the most technical geeks. Kissel has a pragmatic approach to security, wanting to balance the best security measures against the trade-off to convenience and workflow. "Best practices" don't always fit the ordinary user.

Part One is a broad security overview of the Mac, dealing with preventing physical threats, securing user accounts, making security settings, using the Keychain application, securing security over networks, and backing up. Kissel provides a useful seven items checklist To Do Now!

The second part deals mostly with application security of e-mail, chat, VOIP, Web, VPNs, the Keychain, and encryption. Up to this point, casual Mac users can readily follow the discussions and take actions to protect their machines and networks while geeks could be a bit bored. But that ends as the depth and complexity develops in the later parts dealing with wired versus wireless issues, advanced firewall setups, configurations using logs, scanning networks, doing monitoring, checking file integrity, vulnerability scanning, and forensic investigating.

Part five covers issues with OS X server, and provides details about third-party applications and solutions to security problems. Much of the material is of a high technical level covering Directory Services, SSL certificates, file sharing, and other network services.

The book is a heavy thick item with easy to read text, many grayscale screen shots (mostly of configuration windows), with a handful sidebars on incidental matters - insurance issues, scripting, and an interesting discussion and explanation of "cold boot" attacks. This is where RAM chips are cooled by gas to preserve volatile memory long enough to pull data from them even when the machine is off. Who thinks these things up anyway!


(FTC disclosure (16 CFR Part 255): The reviewer has accepted a reviewer's copy of this book which is his to keep. He intends to provide an honest, independent, and fair evaluation of the book in all circumstances.)