Firewall vs Antivirus — Perimeter and Internal Defense
Think of these layers as home security:- Firewall: the fence and locked gates around your property — it controls which network traffic can reach your front door.
- Antivirus: the cameras and motion sensors inside — it detects and responds to anything that gets past the perimeter.
- Inspects and filters incoming and outgoing network traffic by IP, port, protocol, and sometimes by application.
- Allows, rejects, or logs connections before they reach services on your system.
- Used for network-level access control and to reduce exposure from remote networks.
- Monitors files, installed apps, and running processes for known malware (signature matching), suspicious patterns (heuristics), and unusual runtime behavior.
- Quarantines or blocks detected threats to prevent damage and help recovery.
- Acts as an internal surveillance layer that complements the firewall.
Modern operating systems include many protections by default — packet filtering, signed-driver checks, and automatic scanning of downloads. These features often run silently to reduce user friction while improving safety.
B) Filter and monitor network traffic
C) Optimize app performance If you picked B, that’s correct — a firewall filters and monitors network traffic, allowing, rejecting, or logging connections to your system. Recap: the firewall is your outer defense (network-level filtering), and antivirus is internal surveillance (file and behavior scanning).

System Hardening — Reduce Your Attack Surface
Hardening is like securing a house: lock unused doors, seal old entrances, and remove spare keys. The principle is straightforward — fewer access points means fewer ways for attackers to get in. Common hardening steps:| Control | Why it matters | Example |
|---|---|---|
| Disable unnecessary services | Reduces entry points and the patch surface | Turn off unused remote login, file sharing, or print services |
| Close unused ports & audit listeners | Prevents remote access to unneeded services | Close firewall ports and check tools like netstat or ss to review listeners |
| Remove or disable guest/default accounts | Prevents unauthenticated or weakly authenticated access | Delete or disable guest accounts and default admin users |
| Principle of least privilege | Limits damage if accounts are compromised | Grant only required permissions to users and services |
| Strong authentication & 2FA | Protects against credential theft | Enable two-factor authentication for accounts and admin access |
| Account lockout & rate limiting | Prevents brute-force login attempts | Configure temporary lockouts after repeated failed logins |
| Logging & monitoring | Enables detection and incident response | Keep audit logs, configure centralized logging, and enable alerts |
Guest accounts and default service accounts are common, easy targets. Disable or remove them unless absolutely needed, and avoid weak default credentials.



- Every feature or service is a potential pathway for attackers.
- Unused components are often missed during patching and audits.
- Running only required services reduces exposure and maintenance effort.
The OS’s Four Key Security Responsibilities
An operating system protects a system by combining several roles that together address the CIA triad:| Responsibility | Description | Examples |
|---|---|---|
| Manage access | Accounts, permissions, and enforcing least privilege | User/group permissions, ACLs, role-based access |
| Fix vulnerabilities | Provide updates and patches for OS components | Automatic updates, signed packages, patch management |
| Block threats | Perimeter and internal defenses | Firewalls, IDS/IPS, antivirus, app whitelisting |
| Reduce risk | Hardening and secure configuration management | Disabling services, configuration baselines, logging |

Links and References
- NIST Cybersecurity Framework — baseline security controls and best practices
- CIS Benchmarks — platform-specific hardening guidance
- Apple: macOS Security Overview — platform protections and features
- OWASP: Application Security Fundamentals — general principles for reducing attack surface