The Mac firewall really isn’t all that good, and really isn’t necessary anyway, because OS X isn’t a great gaping hole by default. Just make sure only the services you need are on, and you’re set.
Firewalls in routers, including the artificial one in AirPort, I’m a good deal less thrilled about. In these enlightened times of mobile and IPv6, I say we give up the perimeter defence model, in favour of robust host-based security. Mac and Linux (and especially Linux) are good to go. Windows? It comes with a firewall in the box, but apps often open it up; I’d much rather not have a need for it. Sadly Windows seems to assume its presence and you can’t completely lock it down. Be aware also that Apple’s NAT-PMP and UPnP make it possible for any device on your network to open up holes in your router automatically. Apple in fact does this for its own apps, such as Messages, as do other apps such as Skype. So, once again, host-based security and mutual distrust is the solution here. -- You received this message because you are subscribed to the Google Groups "MacVisionaries" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/macvisionaries. For more options, visit https://groups.google.com/d/optout.
