Leopard's Firewall Faulted by Security Researchers || The Mac Observer

Skip navigational links

Choose text size:

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Leopard's Firewall Faulted by Security Researchers

Leopard's Firewall Faulted by Security Researchers

by , 3:10 PM EDT, October 30th, 2007

Researchers at Heise Security have noted that, even after an upgrade from Tiger to Leopard, if the firewall was turned on in Tiger, it is turned off in Leopard, according to Robert Vamosi's C|Net Blog on Tuesday.

In addition, even if the Leopard firewall is once again turned on, some incoming connections will be allowed, determined by Leopard by default.

Jürgen Schmidt, editor in chief at Heise Security said, for example, his team was able to query the NetBIOS Naming Service on the network even with the firewall on. His team also had a problem filtering UDP packets in Leopard [in the firewall].

Heise Security also faulted Apple for not including the latest version of Samba which has bug fixes. It's the same version as in Tiger.

TMO notes that Apple typically avoids confusion by keeping things simple for novices but offers a UNIX architecture that allows professionals to implement whatever they need. Also, in Leopard, the firewall has been moved from the Sharing System Preference to Security.

Recent TMO Headlines - Updated September 29th

Thu, 1:48 PM: How to Make macOS Sierra Empty Your Mac's Trash for You
Thu, 1:23 PM: TMO Daily Observations 2016-09-29: John's Apple Product Wish List
Thu, 12:47 PM: Smartphone Photo and Video Certification Bundle: $29
Thu, 10:47 AM: New Retina MacBook Pro Models Expected in October
Wed, 7:44 PM: 8Bitdo Goes Retro with Apple-themed Game Controller for iPhone, iPad
Wed, 5:16 PM: ACM 378: Life Without a Headphone Jack, More Apple Watch, Siri on the Mac
Wed, 5:08 PM: NuGuard KX Case for iPhone 7 Offers Superb Protection
Wed, 4:39 PM: MyMac Spotlight Interview on Bryan Chaffin
Wed, 2:42 PM: iOS 10 and Swift 3 Starter Bundle: $45
Wed, 1:47 PM: TMO Daily Observations 2016-09-28: Blackberry Ditches Smartphones, Apple's Think Different Ads
Wed, 12:54 PM: Dr. Mac's First Impression: iPhone 7 Plus
Wed, 11:43 AM: Skype Adds Lock Screen and Siri Integration on iOS 10

© The Mac Observer, Inc. -- All rights reserved. All information presented on this site is copyrighted by The Mac Observer, Inc. except where otherwise noted. No portion of this site may be copied without express written consent. Other sites are invited to link to any aspect of this site provided that all content is presented in its original form and is not placed within another frame. The Mac Observer is an independent publication and has not been authorized, sponsored, or otherwise approved by Apple, Inc.