Leopard's Firewall Faulted by Security Researchers || The Mac Observer

Skip navigational links

Choose text size:

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Leopard's Firewall Faulted by Security Researchers

Leopard's Firewall Faulted by Security Researchers

by , 3:10 PM EDT, October 30th, 2007

Researchers at Heise Security have noted that, even after an upgrade from Tiger to Leopard, if the firewall was turned on in Tiger, it is turned off in Leopard, according to Robert Vamosi's C|Net Blog on Tuesday.

In addition, even if the Leopard firewall is once again turned on, some incoming connections will be allowed, determined by Leopard by default.

Jürgen Schmidt, editor in chief at Heise Security said, for example, his team was able to query the NetBIOS Naming Service on the network even with the firewall on. His team also had a problem filtering UDP packets in Leopard [in the firewall].

Heise Security also faulted Apple for not including the latest version of Samba which has bug fixes. It's the same version as in Tiger.

TMO notes that Apple typically avoids confusion by keeping things simple for novices but offers a UNIX architecture that allows professionals to implement whatever they need. Also, in Leopard, the firewall has been moved from the Sharing System Preference to Security.

Recent TMO Headlines - Updated October 17th

Mon, 7:19 PM: Quick Tips, Cool Stuff Found, High Sierra, and KRACK â€“Â Mac Geek Gab 679
Mon, 5:10 PM: Wi-Fi Calling Not Working on Your New iPhone? It May Need to be Re-enabled
Mon, 4:54 PM: TMO Background Mode Encore Interview with TMO Contributor Kelly Guimont
Mon, 4:45 PM: Our Must Have Grocery Apps For Your Next Shopping Trip
Mon, 3:59 PM: Apple Already Patched KRACK Hack in iOS, tvOS, watchOS, macOS
Mon, 3:34 PM: Watch This Video of Dubai Police Star Wars-Like Hoverbike In-Action
Mon, 3:11 PM: How to Take a Screenshot on iPhone X
Mon, 2:47 PM: Apple Quietly Puts Beddit Sleep Monitor to Rest
Mon, 2:08 PM: iOS 11.1 DB3 Released with Fix for iPhone X TrueDepth Camera Bug
Mon, 1:22 PM: KRACK WPA2 Flaw Explained, Qualcomm's Push for iPhone Production Ban - TMO Daily Observations 2017-10-16
Mon, 11:55 AM: iOS 11: How to Make New Notes from Your iPad Pro Lock Screen
Mon, 11:53 AM: Treblab RF100 Magnetic HD Earphones

© The Mac Observer, Inc. -- All rights reserved. All information presented on this site is copyrighted by The Mac Observer, Inc. except where otherwise noted. No portion of this site may be copied without express written consent. Other sites are invited to link to any aspect of this site provided that all content is presented in its original form and is not placed within another frame. The Mac Observer is an independent publication and has not been authorized, sponsored, or otherwise approved by Apple, Inc.