Bastille for OS X?
Reader Walter Williams writes in:
 Apple customers ought to know that the OS is not secured as it is delivered to them, but is secureable (sounds like MS Windows). There is a great script to assist in securing OS X available as part of the Bastille project. This script is still in Beta, though I saw it demonstrated last year at DefCon and was very impressed. More can be found at: http://www.bastille-linux.org/running_bastille_on.htm#osx
I’m familiar with Bastille for Linux, had no idea that there was an OS X project. I’m going to have to boot up a test machine and check it out.
yoshi Apr 24
“Apple customers ought to know that the OS is not secured as it is delivered to them, but is secureable (sounds like MS Windows).”
Excuse me? what does the phrase “not secured” mean? Bastille is a great project and is very useful for the more paranoid among us but expecting the “Apple customer” to use is expecting a bit much. We expect … err… hope that the configuration that is deliver by the Vendor (it be Apple, Dell, or whomever) is “secure enough” for the average user to do whatever they need out of the computer while making a reasonable attempt to provide a secure environment. Because the customer is not going to spend a lot of time doing so.