|
mac geekeryGet your geek on. |
|
|
mac geekeryGet your geek on. |
How To Hide Your PornSensationalism aside, sometimes you have a folder of data that you really don’t want someone to see or use on your computer. This could be financial data, old email, files you shouldn’t have, or, well, porn. Whatever it is, and we’re not judging, you need a way to keep others out of it and so I’ll run over some tips and tricks for keeping prying eyes from poking around. The very first answer some folks will knee-jerk to is “permissions” for something like this. Well, that works in some cases that I’ll cover, but, in general, the prevention we’re talking about is if your user has been compromised and someone is sitting down at your computer. This could be because you share a computer, or you handed your MacBook Pro to a compatriot to view his webmail, or whatever other reason. Permissions in this case would have to lock you out of the folder to be effective. Not ideal. Multiple UsersThis isn’t what you think. Sure, if you have several people using your computer you can make accounts for them and they can’t see your documents, but if you walk away then your security did nothing. Now, if you’d followed my previous advice on the issue then in five to ten minutes the system will secure itself, but that’s a long window. No, what I mean here is make a whole new user for no other purpose than to hold the files you’re hiding. This puts a whole other password in place and a whole other home directory hierarchy on the disk for you to keep the data in. In fact, if you hide the user then no one knows you have another user account, really. Sure, they could look in /Users and see the home, but if you’re going to the trouble to hide the user then I’m sure you would move the home elsewhere… Enable Fast User Switching and you can leave this faux identity open and flip back and forth at will. A variation on this technique would be to make a guest account to switch to when someone needs to use your computer for web access or the like. You can leave it without a password and just flip to it before handing the unit over. You get the same protection (more, I’d say) as your home is now just as inaccessible. Dot FoldersIn Unix (and thus, Mac OS X) files starting with a dot are hidden by default. There are a myriad of ways around this, in and out of the GUI, but this keeps the casual user from knowing that there’s anything of interest at all in your system unless they go poking around. In Terminal, create a folder in your home that starts with a dot (say, .super-secret-stash). In the Finder, Select Go → Go to Folder… and enter ~/.super-secret-stash and the Finder will open the folder like any other. Fill it up and close the window and no one’s the wiser. Well, except that the Finder remembers your last entry in the Go to Folder… window, so when done you need to open that again and tell it to go to your home folder by entering just a tilde (~) and pressing return. Encrypted Disk ImagesThis one solves two problems: first, it hides your files from Spotlight searches and wondering eyes like the previous solutions; second, it actually encrypts the data on-disk such that data recovery monkeys have no chance of a decent recovery of the data. As long as you have good backups of the data, then your concern should be what to do if the unit falls into the wrong hands. This way, normal recovery methods can’t get to it, and it’s safe. This has the added benefit that in Panther and later aliases can reference inside disk images. Put your Quicken Data file in an encrypted disk image and make an alias outside of it. Start Quicken with the alias from now on and you’ll get the password first. In Plain ViewPeople are stupid. Well, that’s a pessimistic view. People are machines of routine and do what they know to do on a sort of automatic pilot. They pick up your computer, see a lot of bland names in your Documents, and since nothing piqued their interest they move on and do whatever they were going to do. Put your secret data inside several folders in your Documents folder, in plain view. Something like: AAPL 2006Q2/Raw data/super-secret-stash.dmg. Toss some dummy Excel and CSV files in the root folder there and prying eyes will usually pass over it (unless you’re the Apple CFO, and then I’d suggest “Home Movies (Kids)” as a title instead; we get enough of them at MacWorld, thanks). More fun, while we’re being obvious, is to be less obvious. Put them somehere in /System/Library. Be careful, be smart, but drop your folder inside something like the printer drivers or whatever. While Spotlight will index the above items, it doesn’t go into /System at all. You could also, for large amounts of data, drop the file into /Library/Application Support/Garage Band or Package FilesWhile we’re avoiding Spotlight and latching onto large files, put them inside large file packages like iDVD or something. Just be sure to put it inside the Back to the Documents folder, you can do this with TextEdit. Create an RTFD with some faux data and save it in your Documents folder as something like “sardine recipes” and close it. Open the package it made and drop your stash there. Be sure to lock the file to prevent deletion… Remote File ShareAll of the previous is on your computer. The best hidden data is not on your computer, but somewhere only you can get to it. Now, I’m not talking about iDisk, because someone else can get to that (Apple) and the damn thing is down daily and you may forget to pay and then it all goes to digital heaven without so much as a wake (damn relatives never invite the friends). Here, you want to have another machine at your beck and call and put the data in your home folder on that machine. If you connect over AFP as guest, you get everyone’s Public folder. Authenticated, you get the full home. Drop it in there (perhaps combined with the above ideas) and you’re good. The data’s not on your machine any more, so no one will see it unless you leave the share up. IMAPA curiosity this, and good for small files only, but attach it to an email message on an IMAP server and save it as a draft. Especially useful if Mail is set to never cache messages. But then we have the same digital heaven problem if you neglect to pay the bill, so watch it. iPod Disk ModeThe iPod is one useful little toy. Turn on Disk Mode, drop your files onto it (perhaps using the above ideas) and then turn off Disk Mode. Hmm, just a media player with a little less space now, and it’s not on your computer to find. And you let go of that toy far, far less than your Mac, I’ll bet. Well, intentionally. iPods are far smaller than your Mac, and stolen far more often. It’s a good place for Amy and Angie’s pool party but not so hot for your financial or personal data unless it’s both encrypted and you have a backup. Just remember that any dedicated cracker can find a way to decrypt most files given enough time, so weigh your use of this with the importance of the data. Most home users would encrypt their financial data for privacy concerns, not security concerns, so this would be acceptable if you have a backup elsewhere. However, if this is where you’re keeping your SVN repository of the Next Big Thing, think twice before doing it. Strength in NumbersThe best security is multi-layered. Put the data in an encrypted disk image in a dot-folder in a hidden second account on a remote computer. You know it’s there, but there’s little chance anyone will break through all those levels and find it. Just watch out for the monkey that deletes that second useless account because he didn’t see any data in it… (But you’ve locked everyone out of System Preferences on that computer like I told you to, right? So that’s not a problem, is it?) Security through authorization and security through obfuscation are two valid methods of security, as long as you understand that obfuscation is much weaker and gets everyone except those that know the data exists and are looking for it. Combine methods with passwords (AFP or encrypted images) with obfuscation (on your server, in a dot folder) and you lock out a good deal of people, even those that know it’s there and are trying to get to the data. You also avoid that really awkward moment when the wife discovers your photos of Bea Arthur on a Harley wearing nothing but a little whipped cream and some cherries. About Adam Knight |
|
||||
Most people don’t know the file architecture of linux. You can just go in terminal, then change to Super User: sudo, then, move your “porn” folder to /var/root/ or /var. So everythine you need it, you go in terminal: sudo mv /var/myporn. Hide the terminal, then when you’re done with it: mv /Users/“myuser”/Desktop/myporn /var/myporn. Then, if the other users knows how to use the terminal, you can just erase the terminal history (Assuming your shell is bash):
rm ~/.bash_history
As simple as 123.
BlacKCroW
—————————————-
You’re gonna pass the 5/6 of your life working,
you have a real good reason to choose a job you like!
BlacKCroW
—————————————-
You’re gonna pass the 5/6 of your life working,
you have a real good reason to choose a job you like!
I wish I had a live machine infront of me to check this on before I make a fool of myself, but something I've experienced in the past is having a folder on your Desktop named the same as a mounted volume. In Finder, you'll see /Volumes/Music, and /Users/Someone/Desktop/Music is unreachable. By Terminal, /Users/Someone/Desktop/Music is right there, but looks perfectly natural (you see it on your desktop, you see it in ~/desktop .. no alarm bells).
I’ve just tried this on several machines at varying stages of 10.4.x and I can’t reproduce that. Maybe it was a bug in an older version of the OS, or the product of some other software…
I have two accounts on my computer. My main account has no “confidential” files and have set Tiger to automatically login to this account at startup, therefore no questions asked.
Someone will only find out if they log off or go into System Preferences and look at users, both of which are very unlikely in my case, where no one I know is very tech-savy. Even if they do find it then it is passworded, and if anyone raises any suspicisions I will just say I was testing out some of my Macs features, calling the account Test Account.
I do like this method best, people start snooping around in your files and have many similar ideas on where you might stash “confidential” files and it becomes suspicious when you folders called wierd names or hidden folders, or password protected folders.
I could try hiding my Test Account but I don’t think that is necessary at the moment.
You should also change the UID of the second user to <500, like 57 or something using NetInfo Manager. That way it doesn’t show up in System Preferences, and you can also hide it from the login screen by editing com.apple.loginwindow.plist
Then turn on FileVault.
How do I remove any traces of porn from my Mac? I really need to erase any trace, if possible, but realize just clearing my cache, cookies, and history is not enough.
Is there a way for a non-computer savvy guy to get this done?
Backup all of your important files, then do an erase and install of OS X with the install DVD.
This will remove all your preferences, apps, user accounts, music, etc… so back up what you need first.
since OSX runs atop linux.. grab TrueCrypt
http://TrueCrypt.org
its free OTF encryption. Create a file volume, or a partition. Have it timeout or just reboot.
File volumes can be burned to DVD (and obvioiusly become read-only) and can be used on WinXP too
download porn
create TC volume
mount TC volume
move porn to volume (or download to TC volume)
dismount
burn TC volume to DVD
etc etc
for added security use a KeyFile.. store keyfile on USB flash drive
for extra extra security create a volume inside a volume. see the TC FAQ for more information.. that way if the people who own the house where you live suspect a hidden volume you can mount the outer volume and show them your pictures of kittens
PS.. EVERY time I load a page on your site firefox throws up an unresponsive script warning.. its so vexing that I won’t be using your site again until you fix it
PPS.. the only option for DVD burning is Plextor!
firefox for porn
Mac OS X doesn’t run on Linux… It’s a Unix-like OS but has nothing to do with Linux. As such, that solution quite possibly won’t work. Have you tried it?
Surprising the number of references to Linux seeing as this site is called macgeekery and Mac OS X incorporates parts of BSD and MACH not Linux. (ie truecrypt won’t work, and is not required if you simply use the built in tools to create an encrypted DMG, as mentiioned before).
Why not just ‘rename’ your files to an unknown extension:
hot_girl_doing_NY.mov
becomes
hnn_12.dll
haha tru dat.
just use Hide Folders 2.0 ( http://www.versiontracker.com/dyn/moreinfo/macosx/27943 )
Spotlight will show your filenames anyway, as will cannedSeearh – this goes for Leopard
Try MediaFortress… has a ton of cool features like stealth password, built-in media viewer, etc. Free trial at http://media-fortress.data-fortress-inc.qarchive.org
lol - better yet, just do:
1) Boot up into Windows with Parallels/Bootcamp/whatever.
2) Install and use HeatSeek
Done.
A related question regarding keeping data secure:
The Desktop Mac has a folder of want-to-be secure data. It’s easy to turn it into an encrypted disk image and manually mount it only when needed, and then manually dismount it.
BUT (you knew that was coming) I also want to be able to access files in this normally-unmounted encrypted folder from a Mac notebook on my network, and of course I want the notebook to unmount the encrypted folder on the desktop once it’s finished accessing the files within the encrypted folder.
I’ve tried connecting the notebook to the desktop using file sharing, logging in as the same user who owns the encrypted disk image on the desktop. But of course the notebook can’t see the encrypted disk image on the desktop because the encrypted file is not currently mounted on the desktop!
I’ve tried, as mentioned above, creating an alias for a file within the encrypted disk folder and copying the alias to the notebook, but when I double-click on the alias on the notebook, it just complains that the alias is broken.
So – how can I set it up that a commercial application on the notebook can be launched, mount the encrypted disk image on the desktop, manipulate files within the encrypted disk image, and then unmount the encrypted disk image once finished?
(Of course there may be other ways to accomplish my goal and I’m all ears.)
Thanks!
Just put the encrypted DMG on a share and then open it remotely. I do it all the time.
2 questions:
1. i have placed tags in the “spotlight comments” section (in the info section (right click>get info)) of on most of my private files, so that i can easily search for files that i want, after reading this article i have now created a hidden folder (.stuff) in my home folder, but since it is hidden, it will not show up in spotlight. is there any way to be able to search for it without someone else being able to search for it using spotlight? (maybe this is something i could do in terminal?)
2. once i open a private file it shows up in the “recent items” section (apple>recent items>documents), is there any way to not add a file to that list when i open it? (i would rather not have to keep clearing that menu, because then it becomes pretty obvious that i have been opening files that i do not want others to see).
thanks for any help.
p.s. i am using a macbook pro – OS 10.4
Using the command SetFile which comes with developers tools can hide files and folders from finder. It’s really simple:
“SetFile -V /path/to/file” to hide it.
and
“SetFile -v /path/to/file” to show it again.
I created a partition for private data. How can I hide the entire drive?
TIA,
B.
Is it possible to move entire applications and associated files to the secured partition and run them without leaving traces on the main partition, like you can do with mobile apps on a flash drive? If so, is there an easy way to move Mail and all its files?
Thanks,
gc
Hi,
I just got a new MacBook and I’m transitioning from PC, so I’ve been having a hard time finding all those places where to hide, change or encrypt files in my new Mac.
I want to hide some pictures, but for some reason I always end up seeing them in the Search for… All Images area.
I tried locking the folder but it doesn’t prompt me to enter a password or anything like that. I know I can create a new account, which I did, but I don’t know how to move my pictures from my current account (w/ non confidential files) to that account reserved only for the confidential files/pictures.
Any suggestions? Thanks!
One great way that works is finding some application that nobody will ever use and then right click it and select “Show package contents”. Then you go from folder to folder and find some place there to put your porn. No one will ever look somewhere there and it doesn´t view in spotlight nor All Images!!!
THANK YOU
How can I make a folder in Terminal? I don´t know it.
Is there anyway to hide or lock a folder on a seperate drive?
What about other issues
you covered hiding folders/files
but what else do i need to clear?
recent files list? net history? does mac keep cookies and cache like pc?
im new to mac so have no idea.
just download that heatseek program for free.
TrueCrypt works for Mac.
I needed to show and hide hidden files a lot when I was doing stuff on my server, mac wouldn’t show the .htaccess files so I made 2 workflow apps to show hidden and hide hidden files
When I read this post and it siad about dot folders I had a winner. Now all I have do is run the little workflow app when I want to vie t folder and run the hide app to hide it again, very handy
Actually I meant Automator apps, not workflow (slaps head in annoyance)
Or, you could just Google “Folder Lock”.