I just read a blog post by @mattgemmell today (link) on his backup strategy.
It has prompted me to refresh my own notes on security and backup and I present them below.
Nothing like as robust as Matt's procedures, but I believe they are appropriate for my work.
I have two possibly contentious issues, the first being that ever since I have owned and used Mac's, I have never run anti-virus/malware software. The second being, that I don't have my hard-drive encrypted.
For the former, I am comfortable that my setup and behaviour on and around the net provides suffficient protection.
For the latter I have a - perhaps unreasonable - fear that encrypting the hard-drive will mess up something that I would rather leave as is.
How are you fixed for the security of your home or work computer?
- Model: MacBookPro10,1
- OS Version: OS X 10.9.3 (13D65)
- Processor: 2.3 GHz Intel Core i7
- Graphics: Intel HD Graphics 4000NVIDIA GeForce GT 650M 1024 MB1024 MB
- Storage: APPLE SSD SM256E Media
- Memory: 8 GB
My backup computer is an iMac updated to the same operating system specification.
It's getting to a point now where I could do most of my work on my iPad if I had to. I tend to take it, instead of my laptop, to meetings and conferences.
- Mac OS X (a BSD-based certified UNIX OS)
- Firewall enabled
- AV - not installed but Little Snitch installed and running (blocks unapproved outgoing connection attempts)
- Computer set to run only downloaded apps from the Mac App store or applications that are code-signed
- Software updates regularly installed
- Login password is set
- Password required after sleep or screensaver
- Screensaver timeout set to 5 mins
- 1Password used to generate, store and fill cryptographically strong passwords across desktop and mobile platforms/browsers
- Auto-locks after 20 mins, when sleeping, when screen saver is activated
- Clears values copied to clipboard after 90 secs
- Adobe Flash has been uninstalled and is only used occasionally via Google Chrome which has it baked in
- Java 7u60 64bit installed and set to ‘very high’ security when running in the browser (only runs apps with a valid certificate)
- I try to avoid using MS Office documents myself for my writing (reports, presentations etc) and now favour writing in a plain text editor and saving in Markdown format and exporting the rendered document as a PDF. This is very safe. Alternatively I use Apple's productivity tools - Pages, Keynote and Numbers
- If I must use Office, I only use XML versions of MS Office files (.docx etc) that don’t support VBA macros