Slashdot has a post that links to a good document that talks about ways to secure Mac OS X Tiger. I didn't realize that Apple enabled encryption of virtual memory swap files. I am now looking into installing Tripwire, Radmind or HenWen on my laptop.
This document is definitely geared towards corporate users. There are some things that I think are missing from this document. It does go into describing creating ipfw rules, which will overwrite the UI settings. But I think that it should go into the new settings that are in the UI. For example, in 10.4, now the firewall can:
- Block all UDP traffic
- Enable firewall logging
- Enable stealth mode
Here is a screen shot of the new options