Category Archives: General

macOS Adaptive Firewall

After that last post on enabling SSH back to my iMac, I realized I should do a little more research into security precautions. I stumbled onto information about the macOS Server Adaptive Firewall.

Enabling it couldn’t be much easier. It’s two commands; first to self-configure, and then to start the firewall:

sudo /Applications/Server.app/Contents/ServerRoot/usr/libexec/afctl -c
sudo /Applications/Server.app/Contents/ServerRoot/usr/libexec/afctl -f

kyrpted.com has a more thorough explanation of how to use the Adaptive Firewall, but I feel a little better knowing it’s running.

SSH to Mac

I’ve taken a bold step: I’ve enabled SSH back to my home computer.

Enable SSH in macOS Server -> Settings

For OPSEC, I’ve disabled all authentication methods except Public Key, with the hope that I can have a secure, reliable, SFTP connection my home machine from anywhere.

To make this change:

  1. I added my public key to ~/.ssh/authorized_keys
    • You can run this command: ssh-copy-id -i ~/id_rsa.pub username@ip.add.ress.here
    • …or just copy ~/.ssh/id_rsa.pub into ~/.ssh/authorized_keys/
  2. I enabled Remote Login in System Preferences
  3. To disable password-based authentication, I edited /etc/ssh/sshd_config with these changes:
    • ChallengeResponseAuthentication no
    • PasswordAuthentication no
    • UsePAM no1

That tutorial also recommends setting KbdInteractiveAuthentication no, but according to ssh.com:

Specified whether keyboard-interactive authentication is allowed. By default, the value of ChallengeResponseAuthentication is used.

Since it takes the value of ChallengeResponseAuthentication by default, I haven’t specified a value for KbdInteractiveAuthentication.

After making these changes, it’s important to restart ssh:

sudo launchctl stop com.openssh.sshd

If it looks like I’ve done something foolish, please let me know!


  1. This isn’t called out in that tutorial, but disabling PAM seems like the most prudent thing here. 

Farewell, 32-bit Apps

iOS 11 is the 32-bit Appocalypse. Before pulling the trigger on the update, I took a look at the apps on my phone that won’t survive the transition1:

  • Star Wars: Tiny Death Star: This was a really fun game; a Star Wars-themed re-skin of Tiny Tower. It was only supported for a year, and received its last update back in 2014. I’ll miss it, but Tiny Tower is still going strong if I want a fix.
  • Chesspuzzles: According to my iTunes Purchase History, I downloaded this on November 1, 2008. It was made by Eric Peng, but I can’t find any information about it now. It was never updated for Retina or 4” screens, let alone iOS 7. The Chess.com app is filling this need for me these days.
  • Monopoly Here & Now: The World Edition: I think this was the only version of Monopoly available on iOS when I bought it back in February of 2009. Macworld gave it four mice. Someone thought to preserve the gameplay for posterity. The next time I have a Monopoly craving, I’ll spring for this version instead.
  • Super MAMC: This is still up on the store, as of this writing, but the last update it received was back in 2012. I think I first heard of this game from Brett Terpstra on his Systematic Podcast, before he jumped from 5by5. I’m glad the Apple Watch didn’t exist the last time I played this; I’d be terrified to see what it did to my heart rate. You can see the gameplay here.
  • Words HD Free: Letterpress filled the void Words With Friends left for me years ago. Good riddance.
  • UE SPL: This was a basic SPL meter. I haven’t needed a replacement yet, and I never even bothered to verify the accuracy of this one.
  • MusicConv: This was a basic Frequency to Note Name to Midi Number calculator. It was really useful for some projects years ago, but it doesn’t even seem to launch on iOS 10.
  • Canopener: This is a great standalone music player, with some simple spatialization algorithms. GoodHertz still sells an AU and AAX plugin with the same spatial processing.
  • Nord Beat 2: A MIDI step sequencer, last updated in 2014. I was mostly using it for drums, and apps like Elastic Drums had replaced it for me.
  • CanIStream.it: This service used to be the best way to see what shows and movies were on each streaming service, but JustWatch is now providing this service for me.
  • TaskPaper for iOS: Jesse Grosjean stopped supporting this app four years ago. Now I use Editorial for most of my iOS TaskPaper needs.

Thank you for your service. I’m sorry I can’t take you into the future with me; you’ll be missed.


  1. You can see this for yourself by heading to Settings ➡️ General ➡️ About ➡️ Applications. 

Stand Up

I launched a new app, Stand Up. It tries to solve a simple problem, as expressed by Joe Cieplinski:

I can read how many hours I’ve stood quite easily, even in the complications. Divide a circle in 12 pieces, and it becomes a breeze to see which number of hours you have currently fulfilled. But there’s no way to know whether one of those hours is the current hour.

Stand Up solves this through a watch complication that indicates whether or not you’ve gotten credit yet for standing in the current hour.

The app also includes a few other ways to tell if you’ve received credit for the current hour, including app icon badges and notifications. It’s free to download, with in-app ad support.

You can download it directly from the App Store: