Security_Key for Mac1.2

i did the steps but it will not work, my computer will just sleep now, it will turn on for a second then go to sleep, how can i fix this, please some respond ASAP

Okay, but who actually carries the tools to open up you mac with them? For that matter, who actually carries around extra RAM just in case they need to hack a mac? If they are opening up your computer, chances are: it is NOT in your possession anymore. So, what would it really matter, anyways?

Firmware password protection can be bypassed by changing the RAM configuration. Its only use is to prevent rebooting something like a kiosk machine in single-user mode, where the box is physically locked up and only the keyboard and mouse are accessible. Otherwise it's worthless. Physical security of data comes from encryption, not from being unable to boot the machine. If the developer wants to do something useful, he should try devising a two-factor authentication system like the SmartCard support already built into the Mac, but without the need for specialized hardware and media.

What features, System Preferences, Network Preferenc es, etc would you like to see added? I was thinking of being able to launch applications as root from the Security Key, like Terminal, Text Wrangler, etc. What do you think? Probably would have to add a GUI app that launches when the Key is inserted and from there maybe a small launcher list of apps.

check for an update later today with all the modifications.

Okay, now I have even gotten past the single-user-mode. Now I can make the machine just reboot itself if single-user-mode is ever entered. HA!!!!!!!!!!! I even set up a function that checks to see if the machine was just booted. If it was just booted the daemon pauses for 15 seconds to let all the Volumes mount. This prevents the machine from going to sleep immediately after startup because the disk is inserted but hasn't been mounted yet.

Okay, just for kicks, I created a little test daemon. Bootied in safe-mode and it worked. Then I booted into single-user-mode and of course I was presented with a command-prompt. I tried to "rm /path/to/my/daemon" with several different combos of options, It dod not work!!!!!!! The prompt told me that it was a read-only filesystem. Now, I think everybody knows that you could always just boot the machine in target-disk-mode, connect it to another mac and get everything you want off of it. So, I guess you could get what you want off the machine in single-user-mode also.

Yeah, There is no need to partition it. You can use the free space any way you want. You can store whatever on it, just don't re-name it.

Just as there are different degrees of security, there are different levels of users (from novice or technically indifferent to power users). This utility could easily find it's niche somewhere in there. Perhaps a touch more magnaminity would be in order from casual reviewers. There is an art to reviewing, just as developing software is an art. I think a possible way to overcome the single boot mode would be to encrypt the daemon, and then on the key, install a script to decrypt on the fly as the system was booting up (though this would take a fair amount of craft but, where there is a will....). Or if not, settle for a lower level user niche. I certainly encourage creativity...who knows what the end result could be?

I have a 2GB flash drive. Is it possible for security key to use a partition since I don't want to waste space and to use the other free space for me files?

I don't like to criticize someone who contributes a free (as in beer) project, but it seems the developer is considering charging money for it. I've known 9-year-old children who could bypass this by booting in single-user mode. No one should install it with the idea that it provides any security against tampering by an attacker with physical access to the computer. There are ways to provide that kind of security, but this isn't one of them. I really can't see any point in this software at all.

Okay, I created an un-installer found here: http://software.electriceelprod.com/Uninstall_Security_Key.zip As for the rest of the comments. Okay, not to be mean, but isn't the point of this to provide more security. Now how could someone steal your USB Key if you have it on you at all times. If you left it in your computer wouldn't that defeat the point. And, no, this is not spyware or anything. Actually, I am considered making this even more interesting. Like, specific "tuned" Network settings and System Preferences that will only be applied when the Key is in. Also, the ability to make a "Valet" key (like you get with a new car, i.e: it only unlocks the door, but does not work on the trunk or glove compartment). this would be useful so that you could make different keys for everyone in your family. This way you do not have to bother with "user switching". What do you think, worth $5 maybe?

How to uninstall?

couldn't someone just boot in to safe mode?

Having a look at the Security_Install_Key Apple Script inside the Install_Security_Key.dmg file the script installs three files: - com.electriceelprod.securitykeycheck.plist inside /System/Library/LaunchDaemons - Security_Key_Check (probably a unix executable) inside /usr/bin/ - .accessfile (on the USB Stick you choose to use) It renames the stick to "Security_Key" at least, might even reformat it before doing so - a backup of your stick might be in order before installing. The LaunchDeamon seems to be the core, triggering the unix executable) inside /usr/bin/ which then seems to check and validate the .accessfile on your usb stick. Although this is just what I can tell from looking at the apple script file. A confirmation from the developer would be useful since I can't look at the unix executable. It might do a lot of other things.

Good idea...that is, until someone steals your USB key, or until it gets lost or broken. :) Is there a way the owner could bypass this if he/she needs to ?

I don't think joselu is being sarcastic. I myself find this idea just great. Although I won't install this thing unless I knew exactly what it is doing and installing on my system, how to remove it in case I lost the stick and backup or even get a website by the developer to look at. Just installing something like this right away without specific information would to much be a security risk - even (or especially) on mac - since there is no way to get a root kit on a mac without user interaction so far.

JOSELU, are you being sarcastic?

Wow! You're such a genius to come out with such an idea!

By the way, this is a launchdaemon.