Comments on: Fixing Leopard’s Firewall http://www.netmojo.ca/2007/10/31/fixing-leopards-firewall/ Apple Certified Mac Consulting Mon, 17 May 2010 19:55:29 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Brent http://www.netmojo.ca/2007/10/31/fixing-leopards-firewall/comment-page-1/#comment-20 Brent Sun, 04 Nov 2007 23:31:08 +0000 http://www.netmojo.ca/blog/2007/10/31/fixing-leopards-firewall/#comment-20 Hi Lance, <a href="http://www.obdev.at/products/littlesnitch/index.html" rel="nofollow">Little Snitch</a> is a more advanced application firewall than the one that Apple ships with Leopard, and it lets you control outgoing traffic from applications on your system. Combine it with ipfw using <a href="http://www.hanynet.com/waterroof/" rel="nofollow">Waterroof</a>, then you've got both general network protection and fine-grained application-level control. As you say, every additional layer adds security, but it also ads inconvenience. Hi Lance,

Little Snitch is a more advanced application firewall than the one that Apple ships with Leopard, and it lets you control outgoing traffic from applications on your system. Combine it with ipfw using Waterroof, then you’ve got both general network protection and fine-grained application-level control.

As you say, every additional layer adds security, but it also ads inconvenience.

]]> By: lance http://www.netmojo.ca/2007/10/31/fixing-leopards-firewall/comment-page-1/#comment-21 lance Sun, 04 Nov 2007 01:56:38 +0000 http://www.netmojo.ca/blog/2007/10/31/fixing-leopards-firewall/#comment-21 hi- So, now I can have app-level FW, ipfw, and hardware firewall. Three is better than two, so maybe this is a step up? Tiger/Client firewall UI was always a dog when compared to the UI in Tiger/Server. Too bad they didn't put the Tiger/Server firewall UI in the Leopard/Client. Of course, that is way to complex for consumers, but it was great to have it build ipfw rules. -lance hi- So, now I can have app-level FW, ipfw, and hardware firewall. Three is better than two, so maybe this is a step up? Tiger/Client firewall UI was always a dog when compared to the UI in Tiger/Server. Too bad they didn’t put the Tiger/Server firewall UI in the Leopard/Client. Of course, that is way to complex for consumers, but it was great to have it build ipfw rules.

-lance

]]>