The purpose of this guide is to provide an overview of Mac OS X v10.3.x Panther operating system security and recommendations for configuring the security features. This guide provides recommended settings to secure systems using this operating system, and points out problems that could cause security concerns in systems using this operating system. This document is intended for anyone managing a locally -administered Apple Mac OS X v10.3.x system. It is assumed that anyone using this guidance will have some experience using Mac OS X, and understands the basics of the Mac OS X user interface. Some instructions within this guidance are complex, and deviation could result in serious adverse effects on the system and its security.

Modification of these instructions should only be performed by experienced Mac OS X administrators, and followed by thorough testing. Systems and Network Attack Center (SNAC) Warnings Trademark Information Table of Contents Introduction Getting the Most from this Guide About this Guide Scope of Guidance Introduction to Mac OS X Security Multi-user, UNIX-based system Security Features Secure Configuration by Default Secure Network Services 4 Security Support for Applications Smart Cards Initial Installation System Installation and Configuration Before Installation Begin Installation Continue Through Installation Screens Initial System Configuration Create First Administrative Account System Updates Downloading and Verifying Updates Installing Updates Fix Disk Permissions Configuring System Settings Removing Registration Information Managing System Preferences Desktop and Screen Saver Security Settings FileVault Additional Security Settings Bluetooth CDs & DVDs Energy Saver 34 Network Table of Contents Sharing Accounts Date and Time Software Update Setting the Global umask Securing Initial System Accounts Restricting Administrator s Home Folder Permissions Securing the Root Account Using sudo Securing Single-User Boot Logon Warning Banners. Auditing and Log File Configuration Configuring syslogd Local Logging Remote Logging Disabling Hardware Components Disabling Mac OS 9 Configuring User Accounts Guidelines for Creating Accounts Creating User Accounts Granting Administrative Privileges Limiting a User Account Managed User: Some Limits Managed User: Simple Finder Securing Users Accounts Restrict Home Folder Permissions System Preferences Settings Overriding the Default umask Setting Up Keychains for a User Account Keychain Access Configuring the login keychain Creating Multiple Keychain Keychain Examples Setting the Default Keychain Additional Notes on Protecting Keychains Using an Account Securely Future Guidance Encrypting Files and Folders Using Disk Utility Creating a New, Bla nk Disk Image With Encryption Creating an Encrypted Image From Existing Data References.

Download pdf Apple Mac OS X v10.3.x Panther Security Configuration Guide Manual