macOS-Security-and-Privacy-Guide VS apple-telemetry

Hi friends, I followed this guide: https://github.com/drduh/macOS-Security-and-Privacy-Guide and some additional steps to protect my macbook from being accessed by unauthorized people. The key steps I did was a full disk encryption and a custom firmware password. This makes it extremely difficult to repurpose my macbook after for example a theft. The reason I want this is that I often study in university or sometimes work in public places, but I also work as a software developer with sensitive consumer data.

https://github.com/drduh/macOS-Security-and-Privacy-Guide/is...

turn on FileVault , turn on the firewall (built in). install Lulu firewall follow this guide and harden the system https://github.com/drduh/macOS-Security-and-Privacy-Guide

I'm looking for a guide to harden MacOS Ventura, preferably including little snitch/lulu blocklist suggestions for MacOS services. I'm aware of dr druh's guide (that currently doesn't seem to be updated for Ventura though) and isn't including a little snitch/lulu blocklist.

- macos, following https://github.com/drduh/macOS-Security-and-Privacy-Guide for hardening (I haven't compared this to other hardening guides, but doing something is better than nothing)

I remember seeing this, I have never followed it so I don't know what it's worth but it's seems quite comprehensive

The privacy setting on IOS is mostly somkes and mirrors as most data is still phoned home, somone made a blocklist of services that „phone home” weirdly often (alltough some I understand, others are there for unknow reason to me). (here is what apple claims each of those send/do ), telemetry is way too closely tied with apple walled garden to fully disable it without loosing funcionality. OEM versions of android arent really better but becuase of the nature of android you can install vanilla android or even a full blown linux distro, there are some efforts to port android and normal linux to iphones, but its very much only a proof of concept, not a end-user os. Generally i personally prefer a open solution for something as low-level as an operating system. Im also very dubious over the iMessage security claims as it had security problems in the past.

Yet they enable personalized advertising by default and collect copious amounts of telemetry? Doesn't seem like "miles ahead" to me.

I just put this list in /etc/hosts. Seems to work well enough. I don’t use any apple services on my Mac. This will probably break those.

https://github.com/adversarialtools/apple-telemetry

Apple has personalized advertising and tracking on by default (having tripled their share of targeted mobile advertising since monopolizing it), as well as a wealth of telemetry and has participated in NSA's PRISM like all other large American tech companies, so I'm not really sure what point is being made here.

They have personalized advertising and tracking on by default, as well as a wealth of telemetry.

If you want a complete list of Apple Servers, check out this link and keep in mind that if you block all of them, services such as updates, App Store, and Apple Pay will probably be blocked by this list..