LANSHARKS.NET – Apple, Internet and Network Consulting Services

Fixing Macs and Networks Since 1990

MacOS Monterey – should I upgrade…?

Apple is scheduled to release their latest operating system – “MacOS Monterey” – on Monday October 25th, 2021. If you’re reading this, you’re probably asking the question: “Should I upgrade?”

The first decision is easy – is your Mac’s hardware supported? Apple specifies that macOS Monterey runs on these Macs:

  • MacBook (Early 2016 and later)
  • MacBook Air (Early 2015 and later)
  • MacBook Pro (Early 2015 and later)
  • iMac (Late 2015 and later)
  • iMac Pro (2017 and later)
  • Mac mini (Late 2014 and later)
  • Mac Pro (Late 2013 and later)

Compared to the previous version of the macOS — macOS Big Sur (macOS 11) — macOS Monterey (macOS 12) drops support for the Early 2015 MacBook; Mid-2013 and Early 2014 MacBook Air; Late 2013 and Mid-2014 MacBook Pro; and Mid-2014 and Late 2014 iMac.

If your computer is supported, I highly recommend the article from the folks at Carbon Copy Cloner below. They discuss the topics of creating a solid backup *before* you start down the path of upgrading the operating system and the possible disruptions of upgrading:

https://update.bombich.com/kb/ccc6/best-practices-updating-your-macs-os

Feel free to contact me via email or the “Contact” box to the right if you have specific questions about your system and/or network environment.

MacOS Monterey/Big Sur Backups: Q&A

For those who have bought a new computer or have updated their machine to Apple’s Catalina, Big Sur or Monterey operating systems, here are some things to know about the new(ish) APFS disk format, bootable backups and the Carbon Copy Cloner backup program…

Q: Should I continue to use Carbon Copy Cloner to make backups of my data?
A: Absolutely. A backup to an external drive is the best way to recover from a sick drive mechanism, failed operating system update or lost/stolen computer.

Q: Should I make my Carbon Copy Cloner backups “bootable”?
A: This is a tricky question to answer. Prior to Catalina, the answer was “absolutely”. Today things are a bit more complicated… Start with this article by Carbon Copy Cloner’s programmer Mike Bombich:

https://bombich.com/kb/ccc6/cloning-macos-system-volumes-apple-software-restore

As noted in this article, the answer depends on several factors, including which Mac hardware you have (Intel processor vs. Apple “M1” processor), and if you want to preserve previous “Snapshots” (points in time from which you can restore data).

If you’re running an Apple silicon “M1” Mac, I recommend using Carbon Copy Cloner’s “Standard” data-only backup strategy. For Intel-intel based Macs, I still recommend the “Legacy Bootable Backup”.

Q: What do I need to know about backups in Catalin, Big Sur or Monterey?
A: Disks used to boot a Mac are now required to be formatted in Apple’s newer file system (APFS). If you have an older backup drive which was previously set up for an earlier operating system (“Mac OS Extended, Journaled”, a.k.a “HFS +”, it is will likely need to be erased and reformatted as APFS. Note: This will permanently destroy all previous backup data on the drive.

Q: Can I continue to use my old external spinning hard drive for Carbon Copy Cloner bootable backups of Catalina, Big Sur or Monterey?
A: I don’t recommend this. The performance of a spinning hard drive formatted as APFS is terrible. In an emergency it may take 8-10 minutes to boot from a spinning APFS drive (vs. <60 seconds to boot from a backup made to a solid state drive (SSD). SSDs are becoming much more affordable per Gigabyte, are exponentially faster than spinning hard drives, and are more resilient to bumps and bruises due to them having no motor or moving parts to wear out.

As of this writing (October, 2021), a name-brand 1TB SSD can be had for around $155 and a 2TB model for ~$300.

Q: Should I upgrade to Carbon Copy Cloner 6?
A: If you’re running Mac OS Catalina, Big Sur, Monterey or later I recommend updating to Carbon Copy Cloner 6. CCC6 is significantly faster and the upgrade price is only $20. Here’s a list of some of the new features:

https://bombich.com/blog/2021/05/19/ccc-6-here-faster-backups-better-accountability-dark-mode-and-so-much-more

Note: Carbon Copy Cloner 6’s user interface is a bit different and may take some getting used to. If you’re running a version of Mac OS before Catalina, Carbon Copy Cloner 5 still works fine.

Q: Should I run both Carbon Copy Cloner and Time Machine backups?
A: Yes. Keeping multiple backups is always a good idea and Time Machine and Carbon Copy Cloner will work to save your data in different ways, depending on the crisis/scenario.

Q: Can I keep using my old spinning external drive for Time Machine backups?
A: Yes. As long as you have enough ports on your computer to connect both drives (or are comfortable rotating external drives on a regular basis), your old Time Machine disk can still be used. If your old spinning drive was previously partitioned for both Carbon Copy Cloner and Time Machine, the Carbon Copy Cloner volume can usually be deleted, making more room available for future Time Machine backups.

Q: Should I exclude my external backup drive from Spotlight indexing?
A: Yes! This prevents a scenario where you search for a file and inadvertently open the copy on the backup drive. If you then edit and save your changes, those changes will NOT reside in the original file on your internal storage. This can be confusing later when you open the original file and your edits are not there!

Q: The icon for my external backup device disappeared from the Desktop during the first run of a Legacy Bootable Backup run. What’s up with that?
A: This is a normal, (but annoying) behavior of Apple’s ASR tool which Carbon Copy Cloner uses to create a bootable clone. The destination disk’s icon will appear again when the copy is finished.

There are plenty of options and questions involved in backing up your Mac. Feel free to contact me via email or the “Contact” section on the right of this page for technical translation and/or advice on or help with any of the above.

Kirk van Moon
LANsharks Consulting

Using Quad9’s Free Service to Protect Your Mac Online

The internet is ripe with scams, malware and phishing attempts. A common method for hackers to obtain your important usernames/passwords is to set up a site which looks *very* similar to your financial institution’s or webmail login. If you don’t notice the address is slightly different than the actual site (i.e. www.citibank.com vs. www.citiibank.com), you may be fooled into providing your credentials at a fake site. The scammers then use the credentials you entered to log in to the real site and drain your bank account, read your personal email, etc.

To help prevent these types of scams, I recommend a free service from a company called Quad9, as a filter for malware and fraudulent sites. A bit of background first, but if you’re already convinced you can skip to the Setup Guide.

When your computer wants to connect to anything on the internet (a web server, send/receive email, update your calendar, etc.), it first needs to do a “Domain Name Service” (DNS) lookup. The internet works on numerical “IP Addresses,” which look something like 69.27.37.10. But numbers are hard for us humans to remember, so we use named entities instead. Rather than having to remember the numerical IP address for Google’s search page, we just enter www.google.com and the computer does a DNS lookup to find the IP address for that particular server. Think of DNS as the “directory information” or “411” of the internet. Here’s a short video describing how DNS works: https://www.youtube.com/watch?v=kURzoJ0Qj9o

By default, most computer users’ DNS lookups are handled by the DNS server at their ISP. This generally works fine, except:

1. The DNS server at your ISP will resolve any domain name your computer asks for. Therefore, if you enter www.infectmycomputerwithmalware.com, the ISP’s name server will diligently do the lookup and point your computer to the IP address of the server which serves that website. There is no filtering or anything to protect your computer from visiting some of the dark and crusty locations on the internet, which may be ripe with malware, viruses and other bad stuff.

2. Most ISPs look at the sites you visit (not the actual pages, but the internet addresses), based on your DNS queries. So if you visit www.iwantanewmazzerati.com, expect to see some advertising for new sports cars soon. This data is then sold to advertisers and used for who-knows-what marketing and other purposes.

I use and am a big fan of Quad9. Quad9 works in tandem with IBM’s security databases and financial companies who keep lists of known-bad-news and look-alike domains. The Quad9 DNS servers will not allow your computer to resolve the name of a known-malicious or look-alike domain to an IP address which your computer would then connect with. So even if you enter www.bankofamerrica.com (note the misspelling with a second “r”), your browser won’t be directed to a fraudulent site asking for your login/password or whatever malicious content is served at that site. In addition, Quad9 doesn’t collect, track or sell any of your DNS searches.

Using Quad9 is particularly helpful in preventing email scams which may point your computer to a website which looks exactly like that of a site you use regularly.

The setup of Quad9 takes literally 2 minutes to enter 9.9.9.9 in your DNS server settings in System Preferences > Network > Advanced.

Setup Guide: https://www.youtube.com/embed/NM4AdfEnAmY?autoplay=1

I can’t recommend this simple step strongly enough. Let me know if you have questions or need a hand. Feel free to share this with those who may benefit.

Kirk out

P.S. I also urge you to enable two-factor authentication at any site where it is offered, particularly for financial institutions.