Security tips for a noob.

Similar Messages

• Development tips for a noob developer

  Hi, guys!  I'm a new to Mac OSX development, do you have any tips for me on:
  - setting up a development environment,
  - testing and test environment,
  - work flow,
  - anything and everything you want to share
  I'd appreciate any tips/suggestions you can share.
  Thanks!

  Hi, K T.  Thanks for your reply.  Yes, I've already read some of them and still reading some more.  I'm quite familiar with the development principles and process itself, but I'm quite curious how you guys how you guys test your candidate releases (i.e., the version to be submitted to the Mac Store).  Do you test it on your development machine?  Do you try it on other macs?  Do you ask your friends to test it?
  As for me, I'm currently setting up my development machine to have 2 or 3 installations of Mac OSX.  One as my development partition (main) and the the other 2 as my test partitions.  My plan is before submitting it to Apple, I would test install the package on my test partitions (copy to the partition, boot to that partition and install).  I'm anticipating, however, that it will a bit tedious, that's why I would like to know how the more experienced OS X developers do their testing.
  Thanks again!

• Looking for security tips about webhosting app

  We want to use an XServe for hosting some of our clients' websites. These should have web and ftp services only (maybe webmail) as well as able to install their own CGIs (or run ours).
  So far (and with the help of the forum here I managed to set up the server. However before taking over the first websites, I generally wanted to know if there are any security issues to consider when intending such an application.
  So some things I'm still unsure with when setting up a user regarding security:
  (1)
  Each user I create is automatically assigned to the group 20 (shortname "staff"). Should I made any changes here ? Must the user be part of other groups ?
  (2)
  Should I set the login shell for these users to "none" or doesn't it play a role ?
  (3)
  Which application has the "Info" section for each user at the WGM ? Is it just for information ?
  (4)
  How can I prevent a user logging in to the server by telnet or ssh ? Currently I have configured our router to block traffic on ports 22 and 23 and this works quite well. But isn't there a more radical solution (beside disabling these ports in the server firewall) ?
  Any other advise or security tips for protecting the server is welcome and appreciated.

  1. I would probably set it up so each of your clients has it's own group.
  Although, I don't know the specifics of your setup.
  Why is this recommended seen security aspects ?
  Users have only access by ftp/mail services, anything else is disabled.
  2. A shell is required for FTP access. So unfortunatly this is not an option.
  Strange that Apple likes to give each user that requires ftp also shell access in the way that they can log in via terminal - or is their command set limited to only viewing files, creating directories and changing permissions ?
  Anyway, since we disabled the ports for ssh in our router I think that we are on the safe side here. Or can you think of a tricky user that finds a way to work around this ? I don't think, but better asking the experts before a hacker shows that it is possible
  4. The info tab in WGM is to populate the associated fields in the LDAP DB.
  Okay, then we leave this out, since users have not access to the server in a way that they can use the address book.
  May I add another question:
  How safe is it to enable the webmail feature for users ? Are there any known bugs or security holes ?

• How do you change your security question for your apple ID on your iPad?, How do you change your security question for your apple ID on your iPad?

  I went to purchase an app from the app store and it said because I nev purchase them I just get the free one that I have to answer some security questions that I would of answered when I first signed up - well silly me cant even remember the answered. So I was just wonder if anyone knows how or where I can go to change my security question answers so I can start purchasing apps!
  Thankyou (:

  1. See my User Tip for some help: Some Solutions for Resetting Forgotten Security Questions: Apple Support Communities.
  2. Here are two different but direct methods:
      a. Send Apple an email request at: Apple - Support - iTunes Store - Contact Us.
      b. Call Apple Support in your country: Customer Service: Contacting Apple for support
          and service.
  3. For other queries about Apple ID see Frequently asked questions about Apple ID.
  4. Rescue email address and how to reset Apple ID security questions
  5. For online assistance use Apple - Support - Express Lane

• Is there a trick or tip for envelopes?

  Is there a trick or tip for envelopes?
  In Word it was easy to print an envelope. You were able to set up your preference for return address & font & a different font for the outgoing address & save it. Then when finished typing a letter you could highlight the outgoing address, copy it & go to Tools/Letters & mailings/Envelopes & mailings & you got a separate window with your previously set fonts & return address. All you had to do was paste your outgoing address in the address field & then you were ready to print the envelope. This was very useful & FAST as you need not save a separate file with the address. Especially if you didn’t plan on more letters to that address.
  I cannot figure out how to do something similar in Pages. The best I can come up with is slow & many steps. I must open a new FROM TEMPLATE CHOOSER Pages window from the file menu, select a particular envelope, get a new window & type in all the address information including my return address selection; fonts, size, etc. Then that Envelope file can be used to print an envelope & you now have a separate file to save.
  There MUST be an easier way. I finally created a template titled “aaaaaaa envelope template” & put in my return address in the font & size I wanted. I also typed a sample outgoing address in the (larger) font I often use for envelopes.
  Now when I finish a letter I copy the outgoing address, I locate & open my “aaaaaaa envelope template” file & highlight the sample address & paste my desired outgoing address from the letter I just typed. Next, I must “save as”in order to both keep the new file & save my template. This cannot be the best way to do this. I know many Mac people type many letters (I don’t) & this would drive them crazy or to buy Word (ugh).
  Suggestions?

  Well, I guess there is NOT some obvious tip or trick I missed. I am already using a template I created. From my original post:
  “I finally created a template titled “aaaaaaa envelope template” & put in my return address in the font & size I wanted. I also typed a sample outgoing address in the (larger) font I often use for envelopes.
  Now when I finish a letter I copy the outgoing address, I locate & open my “aaaaaaa envelope template” file & highlight the sample address & paste my desired outgoing address from the letter I just typed.”
  I don’t do that many envelopes or letters, maybe a few per month. I don’t put street addresses in my address book just email addresses. (I think I’ll add street addresses)
  Thanks Walt, I D/L Easy Envelope Widget. I’ll play around with it soon. I actually do not have my actual name listed on my address book the entry is titled “Me” (Not sure why, perhaps just an unneeded security habit) so that is what appears in the return address for Easy Envelope & I doubt that can be manually changed/saved as per the FAQ. I like the idea of printing the postal bar code to speed things up though.

• How do we change/recover the answers to security questions for AppleID?

  My grandsons forgot the answers to their security questions for their AppleID and can't download from the iBookstore. How can we reset them? I went into Manage my Apple ID but it is asking us for the answers. Thanks.

  If they have a rescue email address (which is not the same thing as an alternate email address) set up on their account then you can try going to https://appleid.apple.com/ and click 'Manage your Apple ID' on the right-hand side of that page and log into the account. Then click on 'Password and Security' on the left-hand side of that page and on the right-hand side you might see an option to send security question reset info to your rescue email address.
  If they don't have a rescue email address then see if the instructions on this user tip helps : https://discussions.apple.com/docs/DOC-4551

• Windows 2012 server security checklist for corporate company standard/recommended check-list

  Hello All,
  Good Day.
  I am looking for Windows 2012 server security checklist (standard hardening
  settings), would you kindly assist me by providing Wintel 2012 standard/recommended check-list ASAP?
  Thanks in advance.

  Hi,
  The Microsoft Security Compliance Manager 3.0 tool is designed to provide you with an end-to-end solution to help you plan, deploy, and monitor security baselines for computers running Windows Server 2012 in your environment.
  For more detailed information, please refer to the articles below:
  Windows Server 2012 Security Baseline
  http://technet.microsoft.com/en-us/library/jj898542.aspx
  Security Hardening Tips and Recommendations
  http://social.technet.microsoft.com/wiki/contents/articles/18931.security-hardening-tips-and-recommendations.aspx
  Regards,
  Mandy
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• HT1918 I would like to change my security questions for my itunes account

  hi, i would like to change my security questions in itunes please.

  Frequently asked questions about Apple ID - http://support.apple.com/kb/HE37 --> Can I change the answers to the security questions for my Apple ID?  --> Yes. You can change the answers to the security questions provided when you originally signed up for your Apple ID. Go to My Apple ID (http://appleid.apple.com/) and click Manage your account.
  Forgotten security questions - https://discussions.apple.com/message/18402551  and https://discussions.apple.com/message/18625296
  More involved forgotten question issues - https://discussions.apple.com/thread/3961813
  Kappy 09/2012 post about security questions - https://discussions.apple.com/message/19569468
  John Galt's tips (09&11/2012) - https://discussions.apple.com/message/19809294 and https://discussions.apple.com/message/20229239
  If none of the above work, contact iTunes Support at http://www.apple.com/support/itunes/contact/ and follow the instructions to report the issue to the iTunes Store.

• TS3297 I forgot my security answers for purchase authorization.

  I am trying to make a purchase from a new computer, but i forgot the answers to my security questions for authorization for purchases.

  1. See my User Tip for some help: Some Solutions for Resetting
      Forgotten Security Questions: Apple Support Communities.
  2. Here are two different but direct methods:
      a. Send Apple an email request at: Apple - Support - iTunes Store - Contact Us.
      b. Call Apple Support in your country: Customer Service: Contacting Apple for
          support and service.
  3. For other queries about Apple ID see Frequently asked questions about Apple ID.
  4. Rescue email address and how to reset Apple ID security questions
  5. For online assistance use Apple - Support - Express Lane

• Tablet Security Tips

  It was reported that tablet shipments were estimated to be nearly 73 million units in 2011.  If you have one of those 73 million tablets or are preparing to purchase a tablet, remember, security starts at "home" with you, the tablet owner. 
  To protect your investment, keep these basic Tablet Security Tips in mind.
  Microsoft MVP, Consumer Security
  Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!
  Twitter: http://twitter.com/SecurityGarden
  Security Information and Malware Removal @LandzDown Forum

  @Corrine,
  Any good software to recommend for tablets which enables GPS tracking if the device is stolen? Would prefer freeware without subscribing to any services but if need to pay for it then I don't mind too.
  Thanks =D
  *Non Lenovo employee*
  I have a Y2P (i5) ... Feel free to ping me if you want me to test some applications with your Y2P if you have the same model. I don't mind keep doing recovery on it if needed .... =)

• Lion security tips?

  Hi.
  With the famous "flashgate", I am bit worried about OS X security...
  Is there any must-to-follow security tips that are needed to know?
  I download software from trusted websites and Mac App Store.
  I'm thinking about Safari and system preferences.
  Thank you!

  If you need to install Java do so with this: Java for OS X Lion 2012-003. It includes all the malware protection software needed to protect from the Flashback trojans. Also, see:
  Helpful Links Regarding Flashback Trojan
  A link to a great User Tip about the trojan: Flashback Trojan User Tip
  A related link in the tip to a checker: Malware Checker Dowload Link
  A Google search can reveal a variety of alternatives on how the remove the trojan should your computer get infected. This can get you started.
  For now I recommend the User Tip from etressoft to detect and remove:
  Checking for and removing the "Flashback" trojan
  Kaspersky Flashback Trojan Site:Flashback Trojan Detection and Removal
  Also see Apple's article About Flashback malware.

• HT1491 How do i get my answers to my security questions for my itunes account

  How do i get my security questions answers for my itunes account

  1. See my User Tip for some help: Some Solutions for Resetting Forgotten Security Questions: Apple Support Communities.
  2. Here are two different but direct methods:
      a. Send Apple an email request at: Apple - Support - iTunes Store - Contact Us.
      b. Call Apple Support in your country: Customer Service: Contacting Apple for support
          and service.
  3. For other queries about Apple ID see Frequently asked questions about Apple ID.
  4. Rescue email address and how to reset Apple ID security questions

• TS3297 i forgot my security questions for purchasing apps

  please help i tried to buy new apps from the app store but the vertification came on to my ipod touch screen and i can't seem to remember  my security questions please help. sincerly iwi cobbadams.

  1. See my User Tip for some help: Some Solutions for Resetting
      Forgotten Security Questions: Apple Support Communities.
  2. Here are two different but direct methods:
      a. Send Apple an email request at: Apple - Support - iTunes Store - Contact Us.
      b. Call Apple Support in your country: Customer Service: Contacting Apple for
          support and service.
  3. For other queries about Apple ID see Frequently asked questions about Apple ID.
  4. Rescue email address and how to reset Apple ID security questions
  5. For online assistance use Apple - Support - Express Lane

• Security Questions for iTunes Store

  Two days ago, I purchased a new iPhone.  Yesterday, I wanted to make a purchase on my phone through the iTunes Store.  As usual, I was asked for my password.  No problem.  Then, because it was my first time purchasing through my new phone, I got a message that I would have to answer some additional information.  A screen opened asking me to answer two security questions that I didn't know the answers to.  I have had the same iTunes account for over 10 years and definitely didn't remember who I answered for my favorite teacher and least favorite teacher at the time I set it up.  There is no link for resetting the questions, trying different questions, or getting help if you forgot the answers.  You either have to give up or continue guessing until you are locked out of your account.  I followed the link for online help and was informed that I would get a response in 24-48 hours.  I called Apple Care who told me that I needed to visit iForgot.apple.com to reset my password.  I explained to 5 Apple Care reps that nothing was wrong with my password.  I got an email response within one hour telling me to go to iForgot.apple.com (which, by the way, requires you to answer security questions in order to reset your password).  Eventually, (after TWO HOURS) an Apple Rep said she could connect me to Apple Security Team.  She waited on hold with me, breaking up the garbled music every so often to let me know she was still there.  After 17 minutes on hold, I was disconnected.  Even though she asked for my phone number so that she could call me in the unlikely event that we were disconnected, she never tried to call me back.  Today, I tried again.  The rep was more helpful but after 15 minutes on hold for the Security Team, she came back to tell me that the wait time was actually ONE AND A HALF HOURS!  Total time wasted on the phone today- 35 minutes.  I just wanted to buy a ring tone.  I am SO disappointed in Apple.  I have never, in over 25 years, had this poor of an experience as an Apple loyalist.  Supposedly, the Security Team rep will call me between 7:45 and 8:00am tomorrow.  THREE DAYS of not being able to use the iTunes Store through my new phone because I can't remember who I listed as my favorite teacher.  Unbelievable.  Very much an unsatisfied customer right now.

  See Kappy's great User Tips.
  See my User Tip for some help: Some Solutions for Resetting Forgotten Security Questions: Apple Support Communities
  https://discussions.apple.com/docs/DOC-4551
  Rescue email address and how to reset Apple ID security questions
  http://support.apple.com/kb/HT5312
  Send Apple an email request for help at: Apple - Support - iTunes Store - Contact Us http://www.apple.com/emea/support/itunes/contact.html
  Call Apple Support in your country: Customer Service: Contacting Apple for support and service http://support.apple.com/kb/HE57
   Cheers, Tom

• How can I change my security questions for itunes

  how can i change my security questions for itunes

  See Kappy's post here:
  TS3297 how to change or reset my security questions
  or the User Tip: https://discussions.apple.com/docs/DOC-4551