| - IceFloor (since OS X includes pf) - mDNSResponder -NoMulticastAdvertisements - Hands Off!/LS - Vera/TrueCrypt - Samhain/TripWire - GPG Tools - Homebrew packages - a password manager - 5x DNSCrypt-proxy instances round-robin'ed with dnsmasq - Chrome/FF - TorBrowser - i2p - no unnecessary apps - follow the NSA and other guides for securing OS X (FileVault 2, firmware password, don't use iCloud Keychain, etc.) - use DBAN on old systems and drives Be aware that security has to be balanced and leave a usable device, and some security measures interfere with and/or disable certain features. And no flash/adobe, browser java plugin References: https://github.com/drduh/OS-X-Security-and-Privacy-Guide http://docs.hardentheworld.org/OS/OSX_10.11_El_Capitan/ http://www.tenable.com/blog/hardening-os-x-using-the-nsa-gui... https://ist.mit.edu/macosx/1011 https://walterkilar.wordpress.com/2016/05/08/apple-os-x-el-c... |