Search 
  Advanced Search  
     
 

:: home
:: about me
:: SQL
:: projects
:: helpdesk
:: CCNA
:: MCSE
:: contact me
:: ubuntu linux
:: MAC OS
:: free JAVA Script
Links
:: Yahoo! Games
:: Ebooks
:: Networking
:: UNIX
:: LINUX
 
Latest News
jdljsadfljsaldkjlsdjljsla klasjdh asdhkkasjhdui asdkhasd dkjhasdnas d
having to navigate to the news article page.

» Read Full Article
Last Updated:
06-06-2006; 14.12 PM
(GMT +3.00)(Arab Standard Time)

 
		Mac OS-X Overview and Networking with MAC Systems


   What is Mac OS X?


goto Mac OS X official website

Click here to go iMac OS X FAQ page

   A Brief History of Mac OS X

The goal of this document is not to trace the history of Mac OS X in great detail, so this section would be brief. A more extensive history of Apple's operating systems is covered in A History of Apple's Operating Systems.

All of Steve Jobs' operational responsibilities at Apple were "taken away" on May 31, 1985. Soon (within weeks), Jobs had come up with an idea for a startup for which he pulled in five other Apple employees. The idea was to create the perfect research computer (for Universities and research labs). Jobs had earlier met up with Nobel laureate biochemist Paul Berg, who had jumped at Jobs' suggestion of using a computer for various simulations. Although Apple was interested in investing in Jobs' startup, they were outraged (and sued Jobs) when they learnt about the five Apple employees joining Jobs. Apple dropped the suit later after some subsequent mutual agreements. The startup was NeXT Computer, Inc.

Jobs unveiled the first NeXT Computer (running NEXTSTEP 0.8) on October 12, 1988, in San Francisco, although a mature release of the operating system took another year. The name "NEXTSTEP" has gone through a number of capitalization permutations, so we shall simply use "NEXTSTEP". NEXTSTEP 1.0 shipped on September 18, 1989, over two years later than what Jobs had first predicted and hoped for. NEXTSTEP was based on Mach 2.5 and 4.3BSD, and had an advanced GUI system based on Postscript. It used Objective-C as its native programming language, and included the NeXT Interface Builder.

In the fall of 1990, the first web browser (offering WYSIWYG browsing and authoring) was created at CERN by Tim Berners-Lee on a NeXT computer. Tim's collaborator, Robert Cailliau, later went on to say that "... Tim's prototype implementation on NeXTStep is made in the space of a few months, thanks to the qualities of the NeXTStep software development system ..."

NEXTSTEP 2.0 was released exactly a year later on September 18, 1990 (with support for CD-ROMs, color monitors, NFS, on-the-fly spell checking, dynamically loadable device drivers, ...). 2.1 followed on March 25, 1991, and 3.0 in September, 1992.

In the 1992 NeXTWORLD Expo, NEXTSTEP 486, a version (costing $995) for the PC was announced. Versions 3.1 and 3.2 were released in May and October, 1993, respectively. The last version of NEXTSTEP, 3.3, was released in February, 1995. A bit earlier, in 1994, NeXT and Sun had jointly released specifications for OpenStep, an open platform (comprised of several APIs and frameworks) that anybody could use to create their own implementation of *STEP. NeXT's implementation was named OPENSTEP, the successor to the NEXTSTEP operating system. Three versions of OPENSTEP were ever released: 4.0 (July 22, 1996), 4.1 (December, 1996), and 4.2 (January, 1997). SunOS, HP-UX, and even Windows NT had implementations at a point. The GNUstep Project still exists. Even though *STEP ran on many architectures (multi-architecture "fat binaries" were introduced by NeXT), by 1996, things were not looking good for them, and NeXT was giving more importance to WebObjects, a development tool for the Web.

Meanwhile, Apple had been desperately seeking to create an operating system that could compete with the onslaught from Microsoft. They actually wanted to beat Windows 95 to market, but failed. Apple suffered a setback when Pink OS, a joint venture between IBM and Apple, was killed in 1995. Apple eventually started work on an advanced operating system codenamed Copland, which was first announced to the public in 1994. The first beta of Copland went out in November, 1995, but a 1996 release (as planned and hoped) did not seem feasible. Soon afterwards, Apple announced that they would start shipping "pieces of Copland technology" beginning with System 7.6. Copland turned out to be a damp squib.

At this point Apple became interested in buying Be, a company that was becoming popular as the maker of the BeBox, running the BeOS. The deal between Apple's Gil Amelio and Be's Gassée never materialized - it has been often reported that Apple offered $125 million while Be wanted an "outrageous" $200 million plus. The total investment in Be at that time was estimated to be only $20 million!

Apple then considered Windows NT, Solaris and even Pink OS. Then, Steve Jobs called Amelio, and advised him that Be was not a good fit for Apple's OS roadmap. NeXT contacted Apple to discuss possibilities of licensing OPENSTEP, which, unlike BeOS, had at least been proven in the market. Jobs pitched NeXT technology very strongly to Apple, and asserted that OPENSTEP was many years ahead of its time. All this worked out, and Apple acquired NeXT in February, 1997, for $427 million. Amelio later quipped that "We choose Plan A instead of Plan Be."

Apple named its upcoming NeXT-based system Rhapsody, while it continued to improve the existing Mac OS, often with technology that was supposed to go into Copland. Rhapsody saw two developer releases, in September, 1997, and May, 1998.

Jobs became the interim CEO of Apple on September 16, 1997.

Mac OS X was first mentioned in Apple's OS strategy announcement at the 1998 WWDC. Jobs said that OS X would ship in the fall of 1999, and would inherit from both Mac OS and Rhapsody. Moreover, backward compatibility would be maintained to ease customers into the transition.

Mac OS X did come out in 1999, as Mac OS X Server 1.0 (March 16, 1999), a developer preview of the desktop version, and as Darwin 0.1. Mac OS X beta was released on September 13, 2000.

At the time of this writing, Mac OS X has seen four major releases: 10.0 ("Cheetah", March 24, 2001), 10.1 ("Puma", September 29, 2001), 10.2 ("Jaguar", August 13, 2002), and 10.3 ("Panther", October 24, 2003).

It would be an understatement to say that OS X is derived from NEXTSTEP and OPENSTEP. In many respects, it's not just similar, it's the same. One can think of it as OpenStep 5 or 6, say. This is not a bad thing at all - rather than create an operating system from scratch, Apple tried to do the smart thing, and used what they already had to a great extent. However, the similarities should not mislead you: Mac OS X is evolved enough that what you can do with it is far above and beyond NEXTSTEP/OPENSTEP.

While unrelated to Mac OS X, Apple came out with their version of UNIX, called A/UX, in 1988. A/UX was a POSIX compliant system based on AT&T UNIX System V (various releases) and BSD4.2/4.3, with a wide spectrum of features (STREAMS, TCP/IP, FFS, job control, NFS with YP, SCCS, printing, X Window System, compatibility with SYSV and BSD in addition to POSIX, and so on). More importantly, A/UX combined various features of the Macintosh with Unix - A/UX 3.x was a combination of the above mentioned Unix features with System 7 for the Macintosh, with the Finder and other Mac applications running under A/UX. The last version of A/UX, 3.1.1, was released in 1995. A/UX was regarded as the holy grail of Unices by some people.

   Booting Mac OS X

This page contains a brief description of the Mac's firmware (analogous to the PC BIOS in many respects), the bootloader, and the typical Mac OS X boot up sequence. There are significant differences between how older (68k, "Old World" PowerMacs) and newer (everything currently, but essentially "New World" machines with Open Firmware 3.x that load ROM from a file) boot. The discussion here applies to the newer systems.

The firmware is not part of Mac OS X, but it plays an important role in the operation of the machine, and is useful in debugging. Hence, we discuss it here.

   Open Firmware

   Background

Open Firmware (IEEE-1275 Standard for Boot Firmware: Core Requirements and Practices) is a non-proprietary, platform (CPU and system) independent boot firmware. Similar to a PC's BIOS, Open Firmware is stored in ROM and is the first stored program to be executed upon power-up.

An Open Firmware implementation is based on the Forth programming language, in particular, the FCode dialect (FCode is an ANS Forth compliant dialect that supports compilation of FCode source to bytecode). Apple and Sun are two prominent computer system makers that use implementations of Open Firmware in their systems (Sun's trademark is called OpenBoot). The Open Firmware Working Group's home page is hosted at various places, including Apple and Sun.

Thus, the firmware is implemented in Forth, and stored in the ROM as FCode bytecode. Device drivers that are required during system startup are also implemented similarly. Such drivers usually exist in the expansion ROM of expansion cards that are needed before the operating system has loaded.

Interaction

You can enter Open Firmware by pressing the key combination cmd-opt-O-F just as you power on a Macintosh. The cmd key is the one with the Apple logo, and the opt (option) key is the same as the alt key. You should see a welcome message and some other verbiage, and should be dropped into a prompt like the following:

ok 0 >

You can continue booting the machine by typing mac-boot, or shut it down by typing shut-down.

Even though this Forth "shell" supports reasonable (for a BIOS) command line editing (you can use ctrl-a to go to the beginning of a line, ctrl-e to go to the end, ctrl-u to erase a line, the up-arrow key for history, etc.), you would find it more convenient (particularly if you are trying to write any code in the firmware) to access a Mac's Open Firmware from another (arbitrary) computer, over the network. Here is the command sequence to do this (everything is typed at the Open Firmware prompt, unless stated otherwise):

0 > dev /packages/telnet

Note that upon success, Open Firmware prints the string "ok" on the same line as you press <return>. In the examples on this page, if you see ok, remember that it is printed by Open Firmware and you are not supposed to type it in (it's not a valid Open Firmware word anyway).

If your Mac's Open Firmware includes the telnet package, you would see:

0 > dev /packages/telnet ok

If you do get an ok, you can run a TELNET server on it:

" enet:telnet,10.0.0.1" io

This would run a TELNET server on the machine with IP address 10.0.0.1 (you can and should choose any appropriate address). Thereafter, you can connect to Open Firmware on this machine using a TELNET client - say, from a Windows machine. See The Towers of Hanoi in Open Firmware for a programming example.

Note that current (at least G4 and above) Apple computers come with Ethernet ports that are auto-sensing and self-configuring, so you do not need a cross-over cable to connect it directly to another computer (no hub is required, etc.).

Examples

1. The following command prints the device tree:

0 > dev / ls ff880d90: /cpus ff881068: /PowerPC,750@0 ff881488: /l2-cache ff882148: /chosen ff882388: /memory@0 ff882650: /openprom ff882828: /client-services ... More [<space>,<cr>,q,a] ? _

2. The following command gives you information about installed RAM:

0 > dev /memory .properties ok name memory device_type memory reg 00000000 10000000 10000000 10000000 slot-names 00000003 SODIMM0/J25LOWER SODIMM1/J25UPPER ... dimm-types DDR SDRAM DDR SDRAM dimm-speeds PC2700U-25330 PC2700U-25330 ...

The machine in the above command (a PowerBook G4 15, although that is not relevant) has two PC2700 DDR SDRAM chips installed. The two pairs of numbers against reg are specify the starting address and size of the chips. Thus, the first RAM chip starts at address 0x0000000 and has a size 0x10000000 (which is 256 MB). The second chip starts at 0x1000000 (256 MB) and has a size 256 MB. The total RAM is thus 512 MB.

If you need to reduce the installed RAM size (as seen by Mac OS X) for any reason, without actually having to remove a RAM stick (or you want to simulate an arbitrary size that's less than the total installed RAM), you can actually delete the reg entry using the delete-property command, and specify your own reg. Referring to the previous example of the 512 MB PowerBook, the following command essentially disables the second RAM stick (note that this change is not written to NVRAM - it is transient - once you reboot, the other chip will be detected and used as before):

0 > " reg" delete-property ok 0 > 0 encode-int 10000000 encode-int encode+ " reg" property ok

It must be kept in mind though that the reg properties can change from machine to machine, or more likely with architectural changes (for example, the format changed with the PowerMac G5). A less adventurous and more appropriate way to limit visible RAM is to use the maxmem boot argument, such as at the shell prompt:

# nvram boot-args="maxmem=128"

3. The following command sequence shows you various information on the machine's CPU(s):

0 > dev / ok 0 > dev /cpus ok 0 > ls ff886d58: /PowerPC,G4@0 ff8871f8: /l2-cache ok 0 > dev PowerPC,G4@0 ok 0 > .properties name cpu reg 00000000 cpu-version 80020101 state running clock-frequency 4a817c7b bus-frequency 09ef21aa ...

The rest of the output contains various cache sizes, the processor's graphics capabilities (Altivec, support for certain instructions, ...), and so on. You can think of this as analogous to /proc/cpuinfo on Linux.

4. The following command lists files in the root directory of the disk (partition) referred to by the "alias" hd

0 > dir hd:\ Size/ GMT File/Dir bytes date time Name 6148 12/25/ 3 4:25:25 .DS_Store 156 9/12/ 3 20:41:59 .hidden 589824 12/25/ 3 6:45: 6 .hotfiles.btree ...

5. The following command expands the alias hd, and gives you the complete path of the device in the tree (type devalias by itself to see a list of current aliases, along with what they refer to):

0 > devalias hd /pci@f4000000/ata-6@d/disk@0 ok

6. You can load a file (kernel) using the load command, and boot it using the boot command. As stated earlier, mac-boot and shut-down are predefined to boot the machine normally, or shut it down, respectively. You can get and set variables (options) using the printenv and setenv commands. These variables are stored in the non-volatile memory (NVRAM) of Open Firmware. For example, if you want your email address to be used as the "OEM banner", you should do the following:

0 > setenv oem-banner you@your.email.address 0 > setenv oem-banner? true

You do not actually need to drop into Open Firmware to set the NVRAM variables. You can access (get and set) these from within Mac OS X via the nvram command line utility.

To sum up, Open Firmware is a powerful tool for controlling, debugging, and exploring the computer.

Operation

When an Open Firmware equipped Macintosh (all current Apple systems at the time of this writing) is powered on, hardware is diagnosed (by some POST code) and initialized. The first entity to control the CPU thereafter is the firmware. Open Firmware (which runs with interrupts disabled) builds a device tree, probes slots for devices, queries PCI devices and assigns them address space appropriately, and then looks for the default boot device (unless one was specified explicitly). The following "snag" keys let the user specify a boot device as the system is powered on:

C device referred to by the 'cd' alias, a CD-ROM drive D device referred to by the 'hd' alias, a hard disk drive N device referred to by the 'enet' alias, a network card Z device referred to by the 'zip' alias, a ZIP drive

It is worth noting that pressing T while your Mac powers on would boot it into what's called the FireWire Target Disk Mode. Essentially, your Mac becomes a fancy external FireWire disk drive.

You can also specify the complete pathname of a device, or have the machine boot over the network using TFTP:

boot enet:<server IP>,<file>,<my IP>;<subnet>,;<gateway IP>

If Open Firmware fails to find a boot device, a blinking folder is displayed.

Open Firmware then loads a file of type tbxi (ToolBox ROM Image, for historical reasons) from the system partition. Note that this would have been the file called "Mac OS ROM" in the System Folder on Mac OS 9, while OS X loads /System/Library/CoreServices/BootX, which is the bootloader as well. BootX is then executed and Control is then passed to it.

Note that Open Firmware can directly load ELF, XCOFF and "bootinfo" (any supported format with an XML header) binaries, but not Mach-O, the native executable format on Mac OS X. BootX can load Mach-O binaries.

Bootloader

BootX (/System/Library/CoreServices/BootX) is the default bootloader on Mac OS X.

BootX is also the name of an open source bootloader (different from Apple's BootX) that allows dual-booting Mac OS and Linux on "Old World" machines.

BootX can load kernels from various filesystems: HFS+, HFS, UFS, ext2, and TFTP (network, abstracted to look like a filesystem). In addition to Mach-O, BootX can also load ELF kernels, although Mac OS X does not use this feature. To reiterate, BootX can load ELF kernels from an ext2 partition!

The "Old World" Macs had various issues with the implementation of Open Firmware, which in turn caused many booting problems for Apple engineers, and even more problems for the PowerPC Linux port. Now, Apple had access to the firmware's source. They solved most of the problems either via NVRAM patches, or by integrating required changes into BootX itself (in the instances where the changes could not be implemented as patches). As BootX matured, Apple added support for ext2 and ELF with the goal of making the platform more amenable to PowerPC Linux.

The sequence of events when BootX starts executing (after being handed control by Open Firmware) is described below:

  • BootX first initializes the Open Firmware client interface (that it would use to talk to the firmware), and retrieves the firmware version.
  • It then creates a pseudo-device called sl_words ('sl' implies secondary loader) in the firmware, and defines various FORTH words in it (it is here that code for the spinning cursor is set up).
  • BootX looks up the options device in the firmware, which contains various variables (that you can see and set using the printenv and setenv commands in Open Firmware).

0 > dev /options .properties name options little-endian? false real-mode? false auto-boot? true diag-switch? false ... boot-command mac-boot ...

  • BootX looks up the chosen device, which contains handles for entities such as the boot input/output devices, memory, the MMU, the PMU, the CPU, the PIC, etc. For example, the following command at the Open Firmware prompt shows you the contents of chosen:

0 > dev /chosen ok 0 > .properties name chosen stdin ffbc6e40 stdout ffbc6600 memory ffbdd600 mmu ... ...

  • BootX initializes handles to the MMU and memory using chosen.
  • BootX initializes handles to the boot display and the keyboard (if present).
  • BootX checks if the "security mode" is "none", or
  • BootX checks if the "verbose" (cmd-v) or "single user" (cmd-s) flags were specified, and sets the "output level" accordingly.
  • BootX checks if the system is booting in "Safe Mode".
  • BootX claims memory for various purposes.
  • BootX finds all displays and sets them up. It does this by searching for nodes of type "display" in the device tree. The primary display is referred to by the screen alias. For example, you can try this at the Open Firmware prompt:

0 > dev screen ok 0 > .properties name ATY,Bee_A compatible ATY,Bee width 00000400 height 00000300 linebytes 00000400 depth 00000008 display-type 4c434400 device_type display character-set ISO859-1 ...

  • While opening the display(s), BootX also sets the screen color to the familiar whitish gray.
  • BootX looks up the boot device, boot arguments, etc., and determines where to get the kernel from (via a network device, from a block device, etc.), whence the path to the kernel file (mach_kernel) is constructed. If booting from a block device (which is the usual case), the path to the kext cache (see kextcache(8)) is calculated, along with the extensions directory (usually /System/Library/Extensions).

Mac OS X uses a few kinds of "kext" (kernel extension) caches to speed up loading of kexts. Kernel caches are kept in the directory /System/Library/Caches/com.apple.kernelcaches. The cache files are named kernelcache.XXXXXXXX, where the suffix is a 32-bit adler checksum (the same algorithm as used by Gzip).

  • At this point, BootX draws the Apple logo splash screen, and starts the spinning cursor. If booting from a network device, a spinning globe is drawn instead.
  • Depending on various conditions, BootX tries to retrieve and load the kernel cache file.
  • The next step is to "decode" the kernel. If the kernel header indicates a compressed kernel, BootX tries to decompress it (typical LZSS compression is used, as you compress this kind of data once but expand it many times). Since the kernel binary can potentially be a "fat" binary (code for multiple architectures residing in the same binary), BootX checks if it indeed is (fat), and if so, "thins" it (figures out the PowerPC code).
  • BootX attempts to decode the file (possibly "thinned") as a Mach-O binary. If this fails, BootX also tries to decode it as ELF.
  • If the above fails, BootX gives up, draws the failed boot picture, and goes into an infinite loop.
  • If BootX is successful so far, it saves filesystem cache hits, misses and evicts, sets up various boot arguments and values (such as whether this is a graphical or verbose boot, whether there are some flags to be passed to the kernel, the size of installed RAM), and also calls a recursive function to flatten the device tree.
  • Finally, BootX "calls" the kernel, immediately before which it "quiesces" Open Firmware, an operation as a result of which any asynchronous tasks in the firmware, timers, or DMA get stopped, etc.

System Startup

Mac OS X user level startup is neither pure BSD style, nor SYSV style, although the presence of /etc/rc indicates a BSD heritage. In fact, various things are unsurprisingly similar to NEXTSTEP.

The next section, XNU: The Kernel, describes some of the things the kernel does as it comes up. Mac OS X System Startup continues with a description of (mostly) user-level startup.

BootCache

Mac OS X uses a boot-time optimization (effectively a smart readahead) called "BootCache" that monitors the pattern of incoming read requests to a block device (the boot disk), and sorts the pattern into a "playlist" (it also measures the cache hit rate and stores the request pattern into a "history list" for being adaptive in future).

The loadable (sorted) read pattern is stored in /var/db/BootCache.playlist. Once this is loaded, the cache comes into effect.

Note that this feature requires at least 128 MB of physical RAM before it is enabled (automatically).

/System/Library/Extensions/BootCache.kext is the location of the kernel extension implementing the cache while Contents/Resources/BootCacheControl within that directory is the user-level control utility (it lets you load the playlist, among other things). The effectiveness of BootCache can be gauged from the following: in a recent update to "Panther", a reference to BootCacheControl was broken. BootCache is started (via the control utility) in /etc/rc, and a prefetch tag is inserted (unless the system is booting in safe mode). /etc/rc looks for BootCacheControl in the "kext" directory, as well as in /usr/sbin, and finds it in the former (it doesn't exist in the latter). However, another program (possibly loginwindow.app) accesses /usr/sbin/BootCacheControl directly, and does not find it. For what it's worth, making BootCacheControl available in /usr/sbin, say via a symlink, reduces the boot time (measured from clicking on the "Restart" confirmation button to the point where absolutely everything has shown up on the system menu) from 135 seconds to 60 seconds on one of my machines!

   NETWORKING IN MAC



It’s always been easy to integrate your Mac into a Mac-centric network. With Mac OS X, you can add Macs to diverse networks that mix Mac OS, UNIX and Windows computers with the same simplicity.

Server logos

Mac OS X offers wide-ranging support for the network file services you need to work in just about any popular network environment. Mac OS X can talk to the most popular file server protocols on every major server platform in the market today — including AFP, SMB/CIFS, WebDAV and NFS file services running on Mac OS X Server, AppleShare, UNIX, Linux, Novell NetWare and Windows NT, 2000 and XP servers. Tiger also offers Bonjour, a standards-based networking technology that automatically connects electronic devices on a network.

Windows networking.

Symbiotic Relationship

Mac OS X Tiger lets you browse Windows networks right in the Finder. Once you’re connected, servers appear in the Finder giving Mac OS X computers first-class access to Windows file server networks. There’s no need to install additional software on either the server or your Macintosh, so it’s easier to integrate your Mac into a Windows network. Tiger improves compatibility with Windows File Servers with support for NTLMv2 authentication.

UNIX logo

With native support for UNIX, Mac OS X can also chat up UNIX NFS servers, making it the perfect network client for universities, research labs and open platform businesses.

Mac OS X also supports SLP, an IP-based protocol used for dynamically discovering network services like file servers. So you can browse available file servers on your network instead of typing in a long, complicated URL.

VPN button

If you need to connect to your company’s network remotely, Mac OS X has the tools you need right out of the box. Just launch the Internet Connect application and select New VPN (Virtual Private Network) Connection Window from the file menu. Enter your account and server information and you’re connected. With VPN on demand, your connection is reestablished automatically when needed and disconnected when you’re finished. Mac OS X Tiger supports PPTP-based VPN as well as standards-based networks, and Tiger now supports new VPN capabilities such as the option to direct all network traffic through a VPN connection.

Wireless World

WiFi logo

Want to tap into that WiFi network at work, the café or the airport? No problem. Mac OS X uses industry-standard networking and security protocols to let you access the Internet, send email or browse servers with wireless convenience. Your Mac will connect automatically to the nearest network, or you can create and rank a preferred list of wireless networks so you join only those you prefer.

And if you are using a network based on an AirPort Extreme or AirPort Express wireless hub, Mac OS X Tiger gives you even more control. For example, you can troubleshoot AirPort networks with an easy-to-use new tool that features specialized diagnostics capabilities.

Web on Your Desktop

Mac OS X offers support for WebDAV, an extension to HTTP (the protocol that drives the web) that allows you to create and share web files by adding file server capabilities to ordinary web servers. You can mount and navigate these Internet file servers within the Finder like any other file server.

WebDAV logo

Its tight Finder integration provides drag-and-drop web authoring, making it easier than the popular file transfer protocol (FTP). And since WebDAV is a standard supported on other platforms, Mac OS X users can easily share documents with users on platforms capable of accessing WebDAV servers. WebDAV is such a versatile file sharing platform that Apple’s own Internet file service, called iDisk, now uses WebDAV for users connecting from Mac OS X.

Works for You

The Apple File Protocol (AFP) remains the richest protocol for Macintosh file services and Mac OS X. It includes full support for any server running the AFP service over TCP/IP. The Internet Protocol (IP) makes it easy to connect to Macintosh file services running on Mac OS X Server, AppleShare IP and Windows 2000 servers.


   Mac Security

Freedom’s not just another word for nothing left to lose. Strong security ensures your ability to conduct your business unhampered. Mac OS X delivers the highest level of security through the adoption of industry standards, open software development and wise architectural decisions. Combined, this intelligent design prevents the swarms of viruses and spyware that plague PCs these days.

Firewall menu

Secure Default Configuration

Apple’s conservative approach to security protects your Mac from attacks over private or public networks, such as the Internet, right out of the box. All the communication ports are closed and all native services — personal file sharing, Windows file sharing, personal web sharing, remote login, FTP access, remote Apple events and printer sharing — are turned off by default. The Mac OS X administrator account, unlike the Windows admin account, disables access to the core functions of the operating system. Many people find that Windows-based PCs are unusable unless they use the admin account, which exposes their PCs to attack. The Mac OS X default configuration, in contrast, guards against shady characters who could so easily take control of your system.

Personal Firewall

All that spam on the Internet these days gets sent by “owned” boxes, usually Windows-based home computers. Cyber pirates scan for easy-to-compromise machines. Tiger’s built-in personal firewall protects your computer from unauthorized access by monitoring all incoming network traffic. When you enable the personal firewall in Mac OS X, all inbound connections are denied except for those that you explicitly permit. And now with stealth mode, your Mac won’t even acknowledge its existence to people scanning for machines to attack.

Auto Update

Internet Software update

Mac OS X can download software updates automatically, ensuring that you stay current with the latest security patches and software releases directly from Apple. Apple digitally signs the updates, so you can be sure they come from a trusted source.

FileVault

Protect the info on your Mac from prying eyes with FileVault, which uses the latest government security standard, AES-128 encryption, to safeguard your hard work. It encrypts and decrypts on the fly, so you don’t even know it’s happening. FileVault protects all the info in your home folder from prying eyes, so your trade secrets stay secret, your holiday shopping lists are kept safe and your personal finance records remain secure.

Keychain

A Secure Keychain

To make it easy to manage the daunting number of passwords and permissions intrinsic to network computing, Mac OS X includes a Keychain. The Keychain stores all your information to use encrypted disk images and to log onto file servers, FTP servers and Web servers. Mac OS X automatically adds your .Mac account information to your Keychain. When you log in to Mac OS X, the system opens your Keychain. You don’t have to enter your user name and passwords to access this data. You can set Mac OS X to lock your Keychain when the system sleeps or is inactive for a time. The system will ask you for your password the next time you try to access secure data. Other users on the system cannot access your Keychain or its data.

Permanent Deletion

Trash icon

Now you can completely erase sensitive files you no longer need. When you delete a file or folder, Secure Erase Trash makes sure that it no longer exists. Traditional file deleting simply removes the file name from the disk directory but leaves the file data in place. Secure Erase Trash immediately overwrites the file with erroneous data, so that the file disappears and cannot be reconstructed.

Disk Image Encryption

For high security, you can encrypt part of your hard disk through the use of a disk image. You can then email this disk image to other people who know the password. Simply open the Disk Copy utility, make a new image and set the encryption. The image will show up as a volume on your desktop. When your Keychain is locked, or when you send that disk image file to another person, the image is secure. When your Keychain is unlocked, you can copy, move and delete files as you would on any normal hard disk.

UNIX based

Security At the Core

Apple makes its source code available and uses time-tested open source software; the developer community examines the system’s security measures, illuminates areas of weakness, discusses and finally implements improvements to close security holes. Through this cooperation, which is inherent in open software development, Apple and the open software community can provide a more secure system and quickly respond to security issues. Apple works closely with security watchdog organizations CERT and FIRST.

Networking Security Standards

From this effort, Darwin, the open source foundation of Mac OS X, lays the groundwork for the security you demand in today’s environment. Darwin offers Kerberos, Secure Shell (OpenSSH), a framework for secure Web transactions (OpenSSL), Wi-Fi Protected Access (WPA) data encryption over wireless networks and L2TP Virtual Private Network (VPN) for secure remote access to coporate networks.

Mac OS X keeps your data safe and your Mac secure.
 
© Copyright 2006-2009 http://www.naveenshetty.cjb.net. All Rights Reserved. designed by Navin Shetty
this website is best viewed in 1027x768px in MIE or Netscape
There are hit counter hits on this page since December 11 2005.