The very first thing you should always do on your new Mac is to make sure you run as non-admin. This protects you against most malware out on the net, since it makes it very difficult to install anything without you knowing about it. It doesn’t exclude it entirely, but it makes a major difference.
First, open System Preferences…:
Then, select “Accounts”:
Once in the accounts panel, you’ll see your accounts to the left. Chances are you’ll only have one, while I have a bunch on this system. The one you have will probably have the subtitle “Admin”:
You’ll see a checkbox to the right that says “Allow user to administer this computer”, but you can’t unselect this unless there is at least one other account that is set to “administer this computer”, so we need to create another account with that ability first.
So, click the “+” down to the left, and what you’ll see then is this:
See to it that the dropbox at the top says “Administrator”, then fill in the rest as you wish. You can use the same password for this account as for your regular account, but see to it that it is a strong password (long and complex). I see no reason why you should necessarily choose another password here. It could look like this, when you’re done:
Click “Create Account” and this is what you should see in the “Accounts” pane:
You’ll probably be asked to reboot at this point, at least if you were logged in as “Noobie Json” as in this example (which I wasn’t). Once you start up again, log in as “Noobie Json” or whatever your account is called, not as “NoobieAdmin”. You should probably never log in as “NoobieAdmin”, ever.
From now on, whenever you need to do something that requires admin level rights, the system will ask you to provide an admin username and password in a dialogbox. For example, if I try to delete an application from “Applications”, the system pops up a dialog box and I have to provide the “NoobieAdmin” credentials:
Now, this never happens without me knowing exactly why it happened, so don’t ever go input your admin credentials unless you know why you should. If you have any doubt, click on the “Details” and it will tell you a little bit more:
In this particular case, “Details” didn’t tell me much I didn’t already know, but when in doubt, in may often tell you exactly what you want to know. If some malware is requesting admin credentials, the app that issued the request will be clearly shown.
If you’re really paranoid, click the double arrow to the right and you’ll see the entire folder hierarchy leading to the app that requested the credentials. Just in case some malware called itself “Finder” for instance. In this case we’ll see that “Finder” is part of “Core Services” which in turn is in the System/Library. Totally kosher, in other words:
OSX very rarely asks for admin rights, so there is very little risk of you getting into a habit of just entering your credentials without thinking. Yes, the first day you use your new Mac, you will do this a number of times until it is all set up, but after that, it becomes a rarity.