Security Self-Test for Macintosh Help Page
Don't Panic!
If you came to this page because you ran the Security Self-Test utility and it discovered some problems, you should be able to find the information you need in order to address those problems somewhere below. There is information specific to the utility, covering its use and limitations, as well as links to security best-practices documents for the Macintosh, which provide step-by-step instructions for securing your computer based on the Self-Test utility's suggestions. If all else fails, there is also a link to the HelpSU web form, if you'd like assistance from ITSS technical support.
On this page:
Working with the Security Self-Test Tool
Help for MacOS 8 & 9
Help for MacOS X
Working with the Security Self-Test Tool
System Requirements:
MacOS 8.1 and later, including MacOS X
Downloading and installing the Security Self-Test:
Download the Self-Test utility at http://www.stanford.edu/group/security/securecomputing/tools/. When you click the button to download, your web browser, depending on how it is configured, may start saving the file automatically to some location such as your computer's desktop, it may display a dialog box asking if you want to save the file, or it may ask you if you want to "open" the file with a program like StuffIt Expander. The file that you download is specially encoded, so you will indeed need software such as StuffIt Expander in order to "unpack" it.
After the download is complete, you may have two files on your desktop, or in your preferred download folder, namely:
- sec_self_test_install_mac.sea.hqx
- sec_self_test_install_mac
The second file is the actual Security Self-Test installer; if it exists, you can trash the first file, unless your web browser has already deleted it for you. If all you have is the first file, then you should double-click it to launch StuffIt Expander. If you don't have StuffIt Expander, you can get a copy from the Essential Stanford Software web site.
If you're not sure where the download went, you can use Sherlock ("Find File...") to search for the installer by name: "sec_self_test_install_mac."
To install the Security Self-Test, double-click the installer file.
Once the software is installed, an icon labeled "Security Self-Test" will appear on your desktop. You run the Security Self-Test by double-clicking its desktop icon. You may now throw the installer away, or you can hold on to it if you want to use it later to remove the utility.
Removing the Self-Test Utility
There is no reason you should have to remove the utility - it does nothing unless you launch it and tell it either to look for new versions of itself on the network, or to "Run Security Tests" - but it's nonetheless easy to remove. If you preserved the Self-Test installer, run the installer again and choose "Uninstall" from the "Easy Install" pop-up menu. You can remove the program manually by deleting these files: 1) the "Security Self Test" desktop alias; and 2) the "SecuritySelfTestX" (MacOS X) or "SecuritySelfTest" (MacOS 8 or 9) program icons in your "Applications" or "Applications (MacOS 9)" folder.
How to Check for New Versions of the Utility
The Security Self-Test has the capability to check for new versions of itself on the network. The first time you use it, it will display a dialog box: "This program can check the network for a newer version of itself when it is started. In order to do that, however, it must access the network. Would you like to check for program updates?" If you respond "Yes," the utility will attempt to go on the network and look for an update. This process takes a few seconds, unless no network connection is present, in which case it might take a little longer. If there is no update available, or no network connection, the utility will open its main window. If an update is available, you'll be given the option to go to the Security Self-Test's home page on the Secure Computing web site, in order to download the new version. If you respond "No," the Self-Test's main window opens immediately.
Note also that there's a check-box in this "enable self-updating feature?" dialog box: "Don't ask me again (remember my choice)." If you click to place a check in that box, then the utility will assume that each time you run it, you want it either to look for updates or not, depending on whether you said "Yes" or "No" the first time.
You can always change your mind. The Self-Test's Preferences menu allows you to turn the auto-update feature on or off, as well as to "Check for Update Now."
Security Self-Test Help Button
The Security Self-Test's "Security Self-Test Help..." button launches your default web browser and takes you to this page.
Important Note on Privacy
The Security Self-Test utility is a simple, self-contained tool that performs a set of basic security checks appropriate to the kind of computer you run it on. The tool is non-intrusive, sends absolutely no information about your computer over the network, and is provided as an educational aid in your efforts to keep your computer more secure.
The utility has been carefully designed to do nothing unless you tell it to. It will not access the network unless you give it permission, it will not scan your computer until you click its "Run Security Tests" button, and it will save none of its test results without your explicit request.
Under only one circumstance will the utility access the network to which your computer is attached: you instruct it to check for an update to itself. If it finds one, and you choose to update, it will launch your default web browser to handle the download of the new software. If you click the utility's "Security Self-Test Help..." button, it will also launch your default web browser. In both of these latter cases, it is the web browser, not the utility, which goes on the network.
Printing and Saving Reports
Once you have run the security tests, you can save the results in the form of a report. Use either the "Save Report" button in the utility's main window, or the appropriate command under its File menu. You can print the saved report using a word processor such as Microsoft Word or a text editor such as TextEdit or SimpleText.
One good way to make use of the Security Self-Test's report is to send a copy by e-mail to your local technical support person. Use the "Copy Report to Clipboard" command in the utility's File menu, then open a new message window in your e-mail program and paste the copied report into the body of the message.
Help for MacOS 8 & 9
While the Macintosh operating systems prior to MacOS X are not "secure" in the usual sense - they don't accommodate multiple users, each with his or her own secure working environment, or provide encryption of data, or levels of privileged access to available hardware and software resources on the computer, and so on - the older Macintosh operating systems are neither a target of hackers and computer viruses, nor open to the sort of remote control over the Internet that allows hackers to use other computer platforms, such as Windows and Unix, to compromise entire networks.
MacOS X is more "secure" than earlier versions of MacOS - but it must be more secure, since it's based on Unix. MacOS X's implementation of Unix is for the most part very well "hardened" against possible attacks from outside, and if your Macintosh will support the newer operating system, there are definite advantages to upgrading, in terms of both flexibility and reliability.
In the meantime, if you're running older versions of MacOS, you don't have much to worry about where computer security is concerned.
Green Checkmarks, Yellow Circles, Red X's
For most tests, once you run them, the Self-Test utility displays either a green checkmark, a yellow circle, or a red X. The green checkmark means no problem was found. The red X means a potentially serious problem was found, and you should try to take corrective action. A yellow circle is somewhere in the middle.
Norton AntiVirus
One of the most important steps you can take to secure your computer is to install and use a good virus protection program.
Stanford has a site-license for one of the better products on the market, Norton AntiVirus, and you are entitled to install it on all of your computers.
Virus protection software has to be maintained, and requires regular updating. Norton AntiVirus makes it easy to automate these updates. You should periodically run a full virus scan on all of your hard drives, and these scans can also be scheduled.
Note: There are not at present many viruses at large that affect the Macintosh, and so updates to virus definitions may not be needed or available.
For more information go to the Macintosh section of the Essential Stanford Software web site.
Norton AntiVirus Configuration for MacOS 8 & 9
MacLeland
MacLeland is a Stanford-specific software package that provides secure authentication, for access to university computing resources that are restricted for Stanford affiliates' exclusive use - such as Stanford electronic mail, some electronic journals and databases on the Library's web site, and so forth - as well as the ability to store and share files very easily on the Leland system.
For more information go to the MacLeland web site.
Internet Explorer Version
Internet Explorer has long been a target for various hacker exploits. Keeping Internet Explorer up-to-date on the Macintosh isn't as important as keeping it up-to-date on the Windows platform, but it's easy to update in any case. Go to http://www.microsoft.com/mac. If you're running MacOS on older hardware, with limited memory, it might not be a good idea to upgrade to the very latest version of Internet Explorer.
Help for MacOS X
MacOS X is based on a computer operating system (Unix) that's been around since the 1960s, and that has long been a popular target for hackers. Fortunately, the default installation of MacOS X is "hardened" against many of the most common modes of attack. At present, so long as you set good passwords for your MacOS X user accounts, your system is unlikely to be compromised.
If the Security Self-Test finds no problems, that does not mean that your computer is perfectly secure. And if it does find a few problems, depending on their nature and severity, that doesn't necessarily mean that your computer is insecure.
Some tests are more important than others; and the ordering from top to bottom of the tests in the utility's main window runs approximately from most to least serious. More specific information is below.
After setting a good password, and keeping your antivirus software properly configured and up-to-date, probably the single most important security measure you can take is to use MacOS's Software Update utility on a regular basis, to check for security updates and other fixes for MacOS. The Self-Test utility does not check whether or not your system has all the current patches and updates. You must run Software Update to do that.
The Software Update utility is among your System Preferences control panels. Go to your Apple menu (or Dock), launch "System Preferences..." and run Software Update.
Green Checkmarks, Yellow Circles, Red X's
The Self-Test utility displays either a green checkmark, a yellow circle, or a red X to report its findings.. The green checkmark means no problem was found. The red X means a potentially serious problem was found, and you should try to take corrective action. A yellow circle is somewhere in the middle.
Internet Connection Sharing
Internet Connection Sharing (ICS) allows home users to share a single Internet connection with other computers on a local network. Using ICS on the Stanford campus, however, can lead to serious problems, including the possible compromise of your electronic mail or other personal information.
Do not use Internet Connection Sharing if your MacOS X computer is on the Stanford campus!
If you do, you may find that neighbors are able to read your e-mail, access your personal records on the Stanford web, or see the files you've stored in your Leland folders, without your knowledge.
To disable ICS, go to System Preferences (under your Apple menu, or in your MacOS X dock) and open the Sharing control panel. Click the "Internet" tab, and then click the button to "Stop" Internet Connection Sharing, if it's turned on.
Norton AntiVirus
One of the most important steps you can take to secure your computer is to install and use a good virus protection program.
Stanford has a site-license for one of the better products on the market, Norton AntiVirus, and you are entitled to install it on all of your computers.
Virus protection software has to be maintained, and requires regular updating. Norton AntiVirus makes it easy to automate these updates. You should periodically run a full virus scan on all of your hard drives, and these scans can also be scheduled.
Note: There are not at present many viruses at large that affect the Macintosh, and so updates to virus definitions may not be needed or available.
For more information go to the Macintosh section of the Essential Stanford Software web site.
Norton AntiVirus Configuration for MacOS X
MacLeland
MacLeland is a Stanford-specific software package that provides secure authentication, for access to university computing resources that are restricted for Stanford affiliates' exclusive use - such as Stanford electronic mail, some electronic journals and databases on the Library's web site, and so forth - as well as the ability to store and share files very easily on the Leland system.
For more information go to the MacLeland web site; you may also wish to consult the MacOS X best practices document.
Internet Explorer Version
Internet Explorer has long been a target for various hacker exploits. Keeping Internet Explorer up-to-date on the Macintosh isn't as important as keeping it up-to-date on the Windows platform, but it's easy to update in any case. Go to http://www.microsoft.com/mac. If you're running MacOS on older hardware, with limited memory, it might not be a good idea to upgrade to the very latest version of Internet Explorer.