macOS Ventura Firewall issues/security concerns
What happened:
- Tested on macs with M1, M2 and Intel.
- Had built in Firewall turned ON with "Block all incoming connections" turned ON.
- Checked Firewall settings some time later and "Block all incoming connections" were turned OFF + "Control Center" was added to Firewall list with "Allow all incoming" set.
- Removed "Control Center" and turned back ON "Block all incoming connections".
- Quit Settings app.
- Opened Settings app and behold..."Block all incoming connections" turned off and "Control Center" added back with "Allow all incoming".
- Quitting Settings app always turns "Block all incoming connections" OFF. "Control Center" didn't come back after removing it couple times though...
My concerns:
- Is it malware doing that, am I infected?
- Is it macOS issue?
My first thought was that I got some kind of malware. I hope not, but at this point I can't rule this out though I am really cautious about cybersec and I don't have ANY third party apps installed on my mac.
There are little to none information about this. Couple posts that state similar findings but with no resolution of any kind.
Could it be Apple developers doing something in a hacky way, like with the "ssh-...wrapper" in Privacy settings after every upgrade to make something work that would not work otherwise?
I am usually really concerned about cybersec of my devices so I check over some settings often and seeing this really bugs me. If Firewall keeps turning "itself" off it's a massive security issue in my book.
I honestly don't expect any resolving comments, but would be nice to figure this out.
Please don't post "How macOS Firewall works" articles, I really am not gonna reed them since Firewall turning self off is in no way justifiable from a security point of view.
 
  