Scott's Weblog The weblog of an IT pro specializing in cloud computing, virtualization, and networking, all with an open source view

Stupid Tricks With The Mac OS X Firewall

Here’s an interesting way to block access to your Mac OS X system. Simply modify your ipfw script to block traffic to or from the 127.0.0.0/8 network. When you do this, your Mac will simply fail to log you in, instead presenting you with an endless spinning disk.

The only workaround is to hold down the Shift key while booting (to initiate a Safe Boot), then disable the StartupItem that launches and configures the firewall.

Of course, I speak from personal experience, having added the aforementioned rules in an effort to block spoofed traffic from accessing the loopback interface. Apparently, Mac OS X is different enough from FreeBSD that this advice (advocated on a couple of FreeBSD-related sites I found while searching for ipfw information) is not recommended.

Metadata and Navigation

Be social and share this post!