Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
Apple Computing Products:
macOS - Operating System
Built in Firewall
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Kokopelli" data-source="post: 109771"><p>An app does not need root access to call out. Root access is mostly required if you want to set up a service in the privileged port range (under 1024). So apps can, and frequently do, "call home" usually to check for updates. If you are worried about that the easy solution is to use Little Snitch. I don't bother personally since I monitor what apps are running and follow the "you have to trust someone sometime" school of thought. If I started noticing an excess of network traffic I would probably add a log to outward requests for a few days though.</p><p></p><p>What I am more worried about would be something like SSH. If someone were lucky enough to guess my account password they could effectively destroy my Mac. A fate that could have been avoided by simply blocking all but a few addresses access to port 22 (SSH). Unfortunately you can't do it with the default implementation.</p></blockquote><p></p>
[QUOTE="Kokopelli, post: 109771"] An app does not need root access to call out. Root access is mostly required if you want to set up a service in the privileged port range (under 1024). So apps can, and frequently do, "call home" usually to check for updates. If you are worried about that the easy solution is to use Little Snitch. I don't bother personally since I monitor what apps are running and follow the "you have to trust someone sometime" school of thought. If I started noticing an excess of network traffic I would probably add a log to outward requests for a few days though. What I am more worried about would be something like SSH. If someone were lucky enough to guess my account password they could effectively destroy my Mac. A fate that could have been avoided by simply blocking all but a few addresses access to port 22 (SSH). Unfortunately you can't do it with the default implementation. [/QUOTE]
Verification
Name this item. 🍎
Post reply
Forums
Apple Computing Products:
macOS - Operating System
Built in Firewall
Top
