Apple Submits Mac OS X For Security Evaluation

← Back to Stories (view on slashdot.org)

Apple Submits Mac OS X For Security Evaluation

Posted by pudge on Wednesday July 3, 2002 @08:05AM from the something-about-being-powered-off-and-buried-underground dept.

ranger8x writes "Apple has submitted Mac OS X and Mac OS X Server to the U.S. government's National Information Assurance Partnership to evaluate various security features. It seems Apple is looking for some respect by the government, and to 'get more exposure.'"

51 comments

Min score:

Reason:

Sort:

Wow! by Drizzt+Do'Urden · 2002-07-03 08:12 · Score: 0

Woo.. that's great!

Apple could bring a Trusted MacOS X before Microsoft get's it's Palladium out! :D

Not that's something interesting...

--
Menzoberranzan Networks
Not look for holes by gbooker · 2002-07-03 08:19 · Score: 5, Informative
The testing doesn't look for holes in the operating system, but rather evaluates what security features are built into it.

I guess they needed this so that Windows could be used.

If that is the case, OS X should not have any trouble at all. Let's look at some of the security features:
- Root disabled by default
- SSH remote login
- Telnet not easy to turn on (should use SSH instead)
- Can disable auto login
- Any major system changes require authentication even if the current user is an admin
- Built in Firewall
I know this is a short list, but it demonstrates the point well. OS X has many security features that are inherant of a unix based OS. It will be nice to see OS X more accepted amoung the government.
--
You see? It's like I've always said. You can get more with a kind word and a 2x4 than you can with just a kind word.
1. Re:Not look for holes by jellomizer · 2002-07-03 08:31 · Score: 2
  
  There is also the fact that there is a Unix File system structor with file permissions.
  
  Defaultly hidden Unix structure from the GUI
  
  A real Multy User mode.
  
  --
  If something is so important that you feel the need to post it on the internet... It probably isn't that important.
2. Re:Not look for holes by TotallyUseless · 2002-07-06 12:46 · Score: 1
  
  your work is done
  
  --
  
  Time for some tasty Shiner Bock!
Government Security by Anonymous Coward · 2002-07-03 08:19 · Score: 0

The government thinks it's secure? Well, that changes everything! The government has an excellent traffic record in detecting security hazards.
1. Re:Government Security by dbrutus · 2002-07-04 01:37 · Score: 2
  
  Actually, they're testing to verify that if your admin knows what he's doing its securable as the OS is not inherently insecure by design (think Win9x for a broke by design example).
A good move. by jellomizer · 2002-07-03 08:20 · Score: 3, Insightful

If apple gets good marks on its security audit. And MS dosent do as well. It is an other thing to stick in MS face. And a way to prove that their OS is better designed then MSes stuff. Of course if it fails (which I think is unlikly) then Apple could be in a lot of trouble.

--
If something is so important that you feel the need to post it on the internet... It probably isn't that important.
1. Re:A good move. by Saint+Fnordius · 2002-07-03 19:58 · Score: 2
  
  According to what I saw, MS has put Windows 2000 up for EAL4 evaluation, with some funky exeptions. Apple is going for EAL3 evaluation first and probably did a lot of internal tests first.
  
  Win2000 has been in the lab for a LONG time now, and still isn't certified. Is Microsoft playing the "submitted for" advertising game, hoping that it can run out the clock yet again?
gov't: a good market for apple by larry+bagina · 2002-07-03 08:21 · Score: 3, Interesting

The Gov't could be a good market for apple,
particularly now that they use OS X
Gov't workers are getting tired of code red, nimda, etc, which hilite how insecure Windows is when not properly configured.
Even though it would require new hardware, OS X has an advantage over linux due to native MS Office support, as well as more commercial applications.

--
Do you even lift?
These aren't the 'roids you're looking for.
1. Re:gov't: a good market for apple by Alan+Partridge · 2002-07-03 09:21 · Score: 1
  
  get a grip. Can you REALLY imagine a govt. dept. buying YOU a PC with a transparent keyboard? irrespective of how good it is, people ALWAYS see good design as frivolous. My IT mangler always goes for coal-black IBM shitstations whether they're appropriate or not. Ooh! a million quid for a rackmount case? certainly sir!
  
  --
  That was classic intercourse!
2. Re:gov't: a good market for apple by dbrutus · 2002-07-04 01:47 · Score: 2
  
  I would expect that as Apple's market shifts, its industrial design will shift too. Take a look at XServe, all brushed metal and easy to look at rack mount front plate and certainly no translucent plastic because it would be a negative for the market.
  
  In fact, if there is any type of clone agreement that Steve Jobs might go for it would be a nice design shop that would simply design different cases in smaller runs than Apple would be comfortable doing. Imagine a 'Red Delicious, Inc.' that would simply design cases that have the same mount points as current models (and similar or superior cooling values) and put current model guts in them using channels that Apple is either uncomfortable using or is simply not feasible at the unit runs Apple would have to have.
3. Re:gov't: a good market for apple by mumkin · 2002-07-04 19:34 · Score: 1
  
  I don't know... I think that apple's pro line is moving in the right direction. The XServe and the TiBook look pretty gov-friendly already. Sure, you'd have a hard time slipping a flower power imac in, but Apple has left the candy colors behind it, and good riddance I say.
  Imagine a flat panel imac with the entire case looking like its brushed metal underside instead of that cheap looking whiter-than-white plastic. I think those would fit in well in a government install. All net-booting Jaguar, too, for easy administration.
  So yeah, while your IT mangler might not be inclined toward Apple, sometimes these decisions come from on high, with a bit of boot to back them up. Doncha think Tony Blair would just love to have some showpiece ministry completely kitted out with super-stylish yet oh-so practical imac workstations? Roll cameras, it's new labour, switching and thinking different.
Can it match up to Windows? by Offwhite98 · 2002-07-03 08:25 · Score: 2, Interesting

Hah!

Well, I for one would prefer to run an enterprise system on top of a MacOS X Server with XServe than on top a Dell with Windows 2000. My day job has me on Windows all the time but on my own time I use an iBook with MacOS X and a FreeBSD server on a PC. From what I have seen with MacOS X security, I think Apple will get great marks.

And hopefully they will show they do not need some Palladium system to secure their OS. That is just silliness by Microsoft. They seem to be blaming the hardware for the OS being so insecure all this time.

--
Brennan Stehling - http://brennan.offwhite.net/blog/
1. Re:Can it match up to Windows? by Anonymous Coward · 2002-07-03 14:10 · Score: 0
  
  are you that guy that did that commercial for apple about switching? you know, that "Windows LAN Administrator" ...
Smart Move by toupsie · 2002-07-03 08:27 · Score: 5, Insightful

Apple has been really turning around its marketing in the last few months. More agressive. I think when Steve Jobs came back to Apple, he saw that he needed to cement his base customers like a politician does when they start a political campaign. Preach to the converted, assure them of their choice and then reach out to the rest. Apple first started giving historical Mac users something to crow about -- Mac OS X, Dual G4s (proud owner) and lately, the iPod. Now Apple is gunning for the Windows user in its switch campaign.
Now with this move, Jobs is deftly putting a thumb in the eye of Gates. Microsoft talks about 2006 for security, Apple says, "Hey, why not today?". Having a respected third party audit will ring loud against Microsoft's tight lipped security policy. Apple already exposes the base source code for Mac OS X called Darwin to anyone that wants to take the time to download it.
I had something else important to point out but the FedEx guy just showed up with Warcraft III. I am sure you will understand...

--
Strange women lying in ponds distributing swords is no basis for a system of government.
What OS X needs for better security by EccentricAnomaly · 2002-07-03 08:53 · Score: 5, Insightful
OS X has good security, but it has lots of room for improvement. It needs:
- longer than 8 character passwords
- checking for good passwords, password expiration, etc.
- let the user turn off the option where you can login with "John Doe" instead of your username
- let the user turn off the 'helpful' feature that puts the last user's name on the login screen
- put a checkbox in the installation process to install a system with maximum security options... stuff like no list of users on the login screen and no web server installed at all, etc.
Just a few ideas...
--
There are 10 types of people in this world, those who can count in binary and those who can't.
1. Re:What OS X needs for better security by jeffy124 · 2002-07-03 09:05 · Score: 2, Informative
  
  excellent points, especially the username list & 8 char limit.
  
  just a comment: the default install includes various servers, yet they're all disabled by default. only after a completed install can those services be enabled.
  
  --
  The One Rule Of Chess You'll Ever Need: Don't play someone who carries a kit in their bookbag.
2. Re:What OS X needs for better security by Zoop · 2002-07-03 09:33 · Score: 2
  
  let the user turn off the 'helpful' feature that puts the last user's name on the login screen
  
  You can do this:
  
  System Preferences->Login->Login Window->Display Login Window as->Name and password entry fields
  
  This displays a blank name field instead of the picture/name combo. I don't at work since the PC admin has an account on this box too, but then, he rarely has to mess with it so he's apt to forget it. ;-)
3. Re:What OS X needs for better security by EccentricAnomaly · 2002-07-03 09:39 · Score: 2
  
  yeah, but an organization might want to remove the web servers on their machines so that some user doesn't set up a web server or some other service and create a possible security hole.
  
  I guess this wouldn't be a problem if users could get by without administrator access, but Mac vendors don't seem to understand that software installs should rarely require admin password. Why does internet explorer require an administrator password to install?
  
  --
  There are 10 types of people in this world, those who can count in binary and those who can't.
4. Re:What OS X needs for better security by wka · 2002-07-03 09:45 · Score: 4, Informative
  
  Even after showing name and password fields, the name of the last user who logged in is displayed by default in the username field. This tool from Apple allows you to turn this behavior off.
5. Re:What OS X needs for better security by softsign · 2002-07-03 10:09 · Score: 2
  
  What? I should hope that any install which adds or changes system-wide libraries requires an admin password. Applications that are a self-contained bundle (e.g. Mozilla) don't require any password (or even installer) because an admin user is in group 'admin' and is allowed to write to /Applications for example.
  
  The reason IE requires a password to install is because it makes changes to directories that a regular user doesn't have permission to change . This is a good practice. Otherwise, what's to stop some dumbass from tearing out critical config files or libraries?
6. Re:What OS X needs for better security by EccentricAnomaly · 2002-07-03 12:05 · Score: 3, Insightful
  
  But why does IE need to change system-wide libraries?? It's just a web browser! There's no good reason for a web browser to mess with my system libraries. Just look at Omniweb, it plays nice.
  
  Good OS X apps put everything in their own ".app" directory so you can install and uninstall the app easily.
  
  You don't even need to be in the admin group to install software on OS X... You can create an "~/Applications" directory in your user directory and install software there. Well written apps function just as well from ~/Applications as /Applications.
  
  --
  There are 10 types of people in this world, those who can count in binary and those who can't.
7. Re:What OS X needs for better security by EccentricAnomaly · 2002-07-03 12:19 · Score: 2
  
  I should clarify... I don't mean that installers should access these directories and file without asking for the administrator password, I mean that installers shouldn't access these directories at all. 90% of OS X installers that ask for an admin password shouldn't be doing whatever they are doing that needs the admin password.
  
  If there's a danger of regular user mucking up some critical config file or library why should so many installers be messing with these config files and libraries??
  
  --
  There are 10 types of people in this world, those who can count in binary and those who can't.
8. Re:What OS X needs for better security by Anonymous Coward · 2002-07-03 12:38 · Score: 0
  
  regarding 8 character passwords, that should be easy to fix. But regardless, it's pretty insignificant. Guessing passwords is not a very common way for an intruder to gain access to a machine.. It's just too much of a pain.
  
  Checking for good passwords, password expiration - Not a bad idea.. It's possible now, just not through the gui:(
  
  Letting user login with full name - Not really important, it only works locally anyway.
  
  Let the user turn off the 'helpful feature that puts the last user's name in the login screen - Not very important either, but more options never hurt.
  
  You can disable the list of users at the login screen already, the web server is disabled by default.
9. Re:What OS X needs for better security by softsign · 2002-07-03 13:05 · Score: 2, Interesting
  
  I agree 100%. A well-behaved OS X app should be self-contained, write its prefs to ~/Library/Preferences, etc, etc...
  
  I think the reason IE doesn't do this is laziness on the part of the developers... It's an app ported (carbonized) from OS 9. OS 9 apps had free reign to run roughshod over the directory tree. It was (and is) bad practice, but there was nothing stopping you. They just haven't bothered to make it self-contained for whatever reason.
10. Re:What OS X needs for better security by tbmaddux · 2002-07-03 14:37 · Score: 2
  
  I don't like password expiration. I have a good unique password for each machine already, never been guessed, why change it unless my machine has been compromised? Password expiration is a bad idea that encourages people to make bad password choices since their new passwords are harder to remember.
  Great point about removing the last-person-who-logged-in listing. When I logout, I'm almost never the next person to log back in! Why would I logout if I were? Get rid of that.
  Web servers -- Apache is installed by default, but disabled, and only admins can turn it on (presumably admins can be trusted not to screw up, security-wise).
  An improvement I'd like: MacOS X has ipfw built-in but disabled, and while apps like Brickhouse are out there to interface with it, I'd like to see a built in OS tool. Maybe in Jaguar? And where's my built in GPG/PGP with GUI? This is Apple, right? Gimme my GUI!
  
  --
  Can't you see that everyone is buying station wagons?
11. Re:What OS X needs for better security by Alex+Thorpe · 2002-07-03 14:42 · Score: 1
  
  Password expiration? Having to change each month, without reusing any passwords? Uh-uh, not on MY home machine! Perhaps as an option that's off by default.
  
  --
  "Common Sense Ain't" -Unknown
12. Re:What OS X needs for better security by Anonymous Coward · 2002-07-03 15:44 · Score: 0
  
  Sorry for the anonymous login. I have too many web accounts to remember now as it is. A few issues to address in this post though:
  
  longer than 8 character passwords
  
  --As I understand it this is more of a Unix/Linux limitation than an Apple one.
  
  * checking for good passwords, password expiration, etc.
  
  --This is a great idea, but should be an option for administrators to select. Not your garden variety user.
  
  * let the user turn off the option where you can login with "John Doe" instead of your username
  
  --Not sure what your talking about here, unless you mean the Other User option. Which I find very helpful on machines where root access needs to be enabled for one reason or another. Also, this is off by default, but can be turned on in the Prefs.
  
  * let the user turn off the 'helpful' feature that puts the last user's name on the login screen
  
  --This can be turned off via the shell, but an administrator tool to do this would be nice.
  
  * put a checkbox in the installation process to install a system with maximum security options... stuff like no list of users on the login screen and no web server installed at all, etc.
  
  --Apple took security very seriously with OS X. I remember my Apple Systems Engineer selling very highly the fact that OS X shipped with only five ports open. As for Apache, it is off by default. Unless you switch it on, it won't come on by itself. Also, list of users can be turned off in the Prefs.
  
  OS X is high security, right out of the box.
13. Re:What OS X needs for better security by dbrutus · 2002-07-04 01:57 · Score: 2
  
  http://www.sente.ch/software/GPGMail/ is probably your best front end for GPG right now. Given the limitations of encryption in various countries, I would guess that GPG would not be available in the default install until a lot more countries get their act together and remove encryption restrictions.
  
  Then again, I'd be much more interested in a Fink GUI (which would get me GPG et al) first.
14. Re:What OS X needs for better security by ranger8x · 2002-07-04 04:34 · Score: 0
  
  Passwords that need to be reset after a certain time certainly have thier uses... in a busy office for example, but for the average home user, this will cause confusion, and forgotten passwords. or, to remember what this week's password is, people will end up writing on a post-it and sticking it to the monitor. that negates any security benefits it might have had.
15. Re:What OS X needs for better security by usr122122121 · 2002-07-04 05:27 · Score: 1
  
  Then again, I'd be much more interested in a Fink GUI (which would get me GPG et al) first.
  Check out FinkCommander, It has gotten rave reviews.
  No affiliation, just observation.
  
  --
  
  -braxton
16. Re:What OS X needs for better security by Anonymous Coward · 2002-07-04 06:40 · Score: 0
  
  Why does changing passwords every month or two make a system more secure. Isn't it better to choose a good password in the first place than requiring them to change it all the time? Constant changing of passwords essentially requires the user to make weak passwords in order to remember them, IMHO.
17. Re:What OS X needs for better security by Johnny+Mnemonic · 2002-07-04 11:53 · Score: 2
  
  * let the user turn off the option where you can login with "John Doe" instead of your username
  --Not sure what your talking about here, unless you mean the Other User option. Which I find very helpful on machines where root access needs to be enabled for one reason or another. Also, this is off by default, but can be turned on in the Prefs.
  
  I'm pretty sure that he means disabling the use of "Steve Jobs" as a login, instead of the Unix-y name "sjobs". I don't particularly see this as a useful security feature; I suppose it gives you one less chance to guess the right answer--you may know your targets full name, but you may not know if they've chosen 'stevej' or 'sjobs'. Whatever.
  
  * let the user turn off the 'helpful' feature that puts the last user's name on the login screen --This can be turned off via the shell, but an administrator tool to do this would be nice.
  
  Noted above by others, but I'll note it again since I also dislike it: there's a utility to do just this located in kBase 106691. Basically just a script to flip a bit you can also access from the term.
  
  * put a checkbox in the installation process to install a system with maximum security options... stuff like no list of users on the login screen and no web server installed at all, etc
  
  Finally, you can be quite a bit more secure by installing without the BSD tools installed. I dunno if this installs Apache, but it would disable all command line tools. I'm only speculating about that, actually, as I have never done an install like that--as a matter of fact, I rush right out to install the dev tools as soon as possible. But the security minded may want to try it.
  
  --
  
  --
  $tar -xvf .sig.tar
18. Re:What OS X needs for better security by foniksonik · 2002-07-04 20:59 · Score: 2
  
  You also have the option of declining an install. Any app that requests admin auth can be declined by virtue of the process.
  
  Don't like IE?... use Mozilla! which so far has got to be the best user experience in a browser I've ever had (flash performance or lack thereof not being a big issue... try Chimera's latest builds if you want to see Windows speed flash on OS X).
  
  --
  A fool throws a stone into a well and a thousand sages can not remove it.
19. Re:What OS X needs for better security by stripes · 2002-07-05 01:19 · Score: 2
  
  Finally, you can be quite a bit more secure by installing without the BSD tools installed. I dunno if this installs Apache, but it would disable all command line tools. I'm only speculating about that, actually, as I have never done an install like that--as a matter of fact, I rush right out to install the dev tools as soon as possible. But the security minded may want to try it.
  
  I assume you mean stuff like the shell, cp, and mv? You can't really not have those. Some of the GUI stuff could in theory depend on it...and in particular one does.
  The apple "package" installer (which is actually pretty good!) will look for several "scripts" during the install, and run them. They are almost always shell scripts, and need the fileutils. Go look at your package reciepts and poke around, you can see some examples. I don't know if any use perl or not, but...
  The normal boot process may well also need them.
20. Re:What OS X needs for better security by EccentricAnomaly · 2002-07-05 04:58 · Score: 2
  
  put a checkbox in the installation process to install a system with maximum security options... stuff like no list of users on the login screen and no web server installed at all, etc.
  
  I should clarify here... I mean give the guy administering a group of machines a simple little checkbox that doesn't even install Apache rather than just disabling it. This is so that a user with administrator password doesn't turn on the web server by clicking the "enable web sharing" box but has to do a little bit of extra work so as to ensure that the user really knows what they are doing.
  
  And I'd like to be able to set a checkbox at instillation time that locks down all of the little things that you have to remember to lock down after the install, like disabling the list of the users on a system.
  
  Perhaps, the best way to do this stuff is just have the sysadmins burn their own CD with their own custom OS X install.
  
  Also, i'm not talking about security options for the average home user. I think Apple has great security for home users. I'm talking about stuff that you want for macs running at atomicsecrets.gov.
  
  --
  There are 10 types of people in this world, those who can count in binary and those who can't.
21. Re:What OS X needs for better security by crooksm · 2002-07-05 07:36 · Score: 1
  
  Even 'mere' 8 character passwords are beyond the current ability of a brute force attack. Assuming the user keeps to upper/lower case characters (no special characters) there are still 52*52*52*etc, 53,459,728,531,456 possible combinations.
Re:I submit this post... by Anonymous Coward · 2002-07-03 08:59 · Score: 0

Use the Preview Button! Check those URLs! Don't forget the http://!
Dear Apple by Anonymous Coward · 2002-07-04 06:54 · Score: 0

Dear Apple,
I ama homosexual. I boughtan Apple computer because of its well earned reputation for being "the" gay computer. Since I have become an Apple owner, I have been exposed to a whole new world of gay friends. It is really a pleasure to meet and compute with other homos such as myself. I plan on using my new Apple computer as a way to entice and recruit young schoolboys into the homosexual lifestyle; it would be so helpful if you could produce more software which would appeal to young boys. Thanks in advance.
with much gayness,
Father Randy O'Day, S.J.
1. Re:Dear Apple by Anonymous Coward · 2002-07-06 14:09 · Score: 0
  
  You need a nintendo and rum laced Twinkies.
Apple security will be hurt by lazy users by Anonymous Coward · 2002-07-04 16:13 · Score: 0

Many apple users I know off do not upgrade any software at all. I predict that they will be wiped out by a nasty exploit and wonder what has hit them.
I foresee the end of Apple and the golden age of Microsoft.
1. Re:Apple security will be hurt by lazy users by Anonymous Coward · 2002-07-05 00:01 · Score: 0
  
  I'm not a fucking troll arsehole. Just a man who can see the future.
2. Re:Apple security will be hurt by lazy users by Anonymous Coward · 2002-07-05 01:56 · Score: 0
  
  You may want to examine the `Software Update' program under OS X at some point in time.
  
  foad kthx.
3. Re:Apple security will be hurt by lazy users by Anonymous Coward · 2002-07-05 13:54 · Score: 0
  
  That and the fact that virii for the Mac OS are even more rare than a reliable MS product. In fact, last time I checked there were no known OS X virii.
4. Re:Apple security will be hurt by lazy users by ScottKin · 2002-07-07 04:07 · Score: 1
  
  Well - since OS X is built on Darwin...which is built from FreeBSD...every FreeBSD liability is automatically included FOR FREE (as in "no-cost-to-the-consumer") by Apple!!
  
  How nice of them to do that for you - but of course, no *nix-lover ever wants any of the "unwashed & unblessed" Windows users to think that *nix is not secure by default - it's their "digital playtime" to patch their *nix OS; in fact, it's almost a game for them to keep up-to-date with the latest patches on top of providing *nix SysAdmins with job security.
  
  Purely Amazing!
  
  ScottKin
  
  --
  I don't give a rat's behind about "karma" here or anywhere else. Don't like what I have to say here? Deal with it!
Apple and the upgrade exploit by theolein · 2002-07-12 02:39 · Score: 2

If Apple wants their computer and OS to pass the testing I think they should get the upgrade vulnerability patched pretty soon.