Slashdot Mirror

← Back to Stories (view on slashdot.org)

Mac's Immunity To Recent Virus Attacks

Posted by pudge on from the snork dept.

bluepinstripe writes " An article over at MacCentral references two articles about the Mac's immunity to the recent virus attacks." This is nothing new, but worthy of note, from time to time, such as now.

16 of 257 comments (clear)

  1. Common Sense by trompete · · Score: 3, Insightful

    To most of us, it is common sense that Windows-based viruses and worms won't affect Macintoshes, but there are end users out there who think that viruses affect all platforms.
    Unfortunately, none of those naive users browse this site.

    --
    More than enough BS
  2. my mom by BortQ · · Score: 4, Insightful
    This is the single biggest reason that my mother uses a mac. I'm still required for some occasional technical support calls from her, but I can't imagine how bad it would be if she ran windows.

    So join the crusade. Give your mom a mac!

    --

    A Multiplayer Strategy Game for Mac OS X, Windows, and Linux
    1. Re:my mom by diverman · · Score: 3, Insightful

      Amen! I have been trying to get my mom and her boyfriend to get a Mac. I got them setup with Wireless at home. I setup their laptop to work wirelessly (Running Windows 98 ... old one), and I support them and their XP desktop (*sigh*). When it came time to get a new laptop, they went the XP route (Compaq). While I think Compaq has some nice machines, it's been nothing but a nightmare in dealing with XP and its "intellegent" handling of the wireless network.

      I am still pushing for them to get an iBook. I endlessly tell them how much nicer most of their tasks would be. How much less risk they will have of viruses, etc. At least I don't let them use Outlook.

      So, the way I see it... as a 20-something (can still barely claim that) year old guy it's a wise choice to promote OS X with family members. It will seriously cut down on your overall cost of support time and generally annoying phone calls. I've almost got my dad convinced that a Mac will be his next computer. His friend concurs it's the right choice for him. Wish me luck! I need to cut down on this support overhead!

      -Alex

    2. Re:my mom by BortQ · · Score: 4, Insightful
      If everyone's mom had a mac, then the virus writers would target macs, not windows.

      Maybe so, but there's a difference between there being lots of viruses on a platform and those viruses causing havoc. Windows is a very inviting environment for a virus. You're allowed to do all sorts of stuff. That is why viruses cause so much damage to windows infrastructure.

      For example, the SoBig worm wasn't bad because it existed, it was bad because it was able to do what it did. In more secure environments this would not have been possible.

      --

      A Multiplayer Strategy Game for Mac OS X, Windows, and Linux
    3. Re:my mom by andrewski · · Score: 3, Insightful

      Bullshit. You are using the flawed premise that because the majority of people use Windows machines, the virus writers target them because of sheer numbers. This is absolutely incorrect. The reasons that virus writers target Windows are...

      1. The Win32 API is fundamentally flawed and insecure.

      2. Windows users tend to be the most naive of computer users. They'll click on anything with tits or a smiley face.

      3. Microsoft builds-in security holes, and labels them as features.

    4. Re:my mom by jonadab · · Score: 3, Insightful

      > please clue the cable companies and other ISPs in to the fact
      > there are far more email and internet clients available.
      > everytime I go to mine with a complaint that something isn't
      > working right (ie my cable modem has stopped working and there
      > is an external network problem), they go what software are you
      > using? and when I reply Linux, they go "sorry we don't support
      > that". So I go into ms-windows just for them and they can only
      > talk me through IE and Outlook/Outlook Express, anything else
      > just isn't on their script... and their first request after
      > I've gone into ms-windows for them is to turn off my firewall!!!

      This is tier 1 support, designed to weed out the PEBCAK issues.
      Here's how you get past them: talk just a little bit fast, don't
      stop for interruptions, and ask questions they can't begin to
      understand, much less answer. For example, if you can reach the
      system directly upstream from you and nothing else, try to reach
      the dns, and when you can't, you've got something to call about:

      Tier1: "foo.net tech support, may I help you?"
      You: "Yeah, I'm having a routing issue. I can ping the dialup
      server at the other end of my ppp link, but I can't reach
      the primary domain server. I tried to telnet to TCP port
      53, but I got nothing, not even connection refused. I
      tried a traceroute, but it wouldn't go past the second
      hop. Is 209.143.57.55 the correct IP address?"

      It doesn't matter that you know very well the domain server isn't
      related to the problem. What you said is true, and the tier1 guy
      should immediately sense that he's in over his head and transfer you
      to somebody with an ounce of clue. If he doesn't right away, you
      continue to talk over his head:

      Tier1: "Umm, that sounds like a pretty weird problem. What software
      are you using to connect?"
      You: "pppd, but the ppp connection itself is fine; I'm getting
      160 millisecond ping times to the dialup server, which is
      pretty normal; sometimes they're as much as 300 milliseconds
      and everything works fine. The dialup server I'm connecting
      through is at 10.0.18.7. I tried redialing to see if I
      could get a different one, but that's the one I keep getting.
      Can you ping 10.0.18.7 from your end?

      And don't get too angry at the tier1 guys. If they weren't there,
      the real tech support people would have all gone clinically insane
      long ago and there'd be nobody left to help you with your problem.

      --
      Cut that out, or I will ship you to Norilsk in a box.
  3. Re:bad analogy by mhesseltine · · Score: 5, Insightful
    Macs aren't "vaccinated" against Windows-based e-mail viruses or worms.

    Agreed. It just seems like people brag about something that is painfully obvious (Macs don't get affected by Outlook viruses; people who are vaccinated against polio don't get polio)

    Saying Macs are "immune" in this case is about like saying my car is immune to Polio. It just doesn't apply in this case. Macs won't be "immune" to Mac-based viruses, when they come along.

    Again, agreed.

    Anyone dumb enough to launch an executable e-mail attachment without first virus-scanning it is dumb enough to do it on any platform they run. Bragging about Macs not being susceptible to this round of viruses is merely bragging about how few Macs there are, and how it isn't worth the time of the virus-writers to make Mac-based viruses. Whoopee.

    And this leads to another point. Why do we call them "Windows" viruses. It isn't a function of Windows, per se, that allows this to happen. It's a function of Outlook and OE that causes the problem. If mail.App ran binary attachments without a scan, Macs would be just as vulnerable as Windows machines.

    We should start calling them Outlook viruses. Put the blame where it belongs, on the bad email applications.

    --
    Overrated / Underrated : Moderation :: Anonymous Coward : Posting
  4. Why so nasty about Macs? by GreatDrok · · Score: 5, Insightful

    I don't get all these nasty comments about Macs. I don't actually own one, been a Linux user since 1994 and before that I was a SUNOS guy. Never really liked Macs but I could see that people found them easy to use so that was fine. OSX is by far the best of both worlds, my next laptop is almost certainly going to be a powerbook, doesn't mean I won't continue to like Linux, its all UNIX, its all good.

    The one thing I find odd is the lie that is simplicity. Macs are a doddle to use and yet they are clearly also nice secure systems. Windows is less easy to use and yet easier to write viruses and trojans for. Chewbacca defense? It does not make sense! If Macs were as common as PCs they still wouldn't suffer the same level of viruses and worms as Windows does. Same is true for Linux. Besides which, what if we had 25% Windows, 25% Linux, 25% Macs and 25% others. I bet Windows would still have by far the greatest number of viruses etc.

    Cool off guys. Macs are good. Its all UNIX and that is good. A little bit more of this and Windows will be the minority just as it should be.

    --
    "I have the attention span of a strobe lit goldfish, please get to the point quickly!"
  5. It's all about perception... by xTMFWahoo · · Score: 4, Insightful

    Mac's seem to be immune from viruses not because Mac's are totally secure, it's due to the fact that the clowns that write viruses HATE Microsoft and want MS to look bad. Every OS has holes of some sort. No software is perfect.

    --
    "Patriotism is supporting your country all the time, and your government when it deserves it." Mark Twain.
  6. Not totally true by theolein · · Score: 3, Insightful

    Anti-virus software maker Sophos PLC's Graham Cluley told the Sun's Zeiler that Macs have "no more inherent security" than their PC counterparts, it's just that they've failed "to capture interest" among the creators of these viruses.

    The Unix/OSS security model in OSX (and lack of Outlook type automatic unsecure scripting) is not the only protection. This exists in Linux and BSD et al also. The use of x86 machine code in buffer overflow attacks will not work on PPC or Sparc machines.

  7. obvious? by Anonymous Coward · · Score: 4, Insightful

    Am i the only one that thinks this article should be on the front page?

  8. Mac: False Sense of Security by AHumbleOpinion · · Score: 3, Insightful

    By all means get your Mom a Mac but don't let Mac OS 9 and previous lull you into a false sense of security. The notion that Macs are a nice safe place to avoid virii and worms is obsolete. With Mac OS X Mac's are now much more vulnerable and a highly inviting target:

    (1) They have excellent remote user capabilities. This not only aids in compromising the system but it's Unix nature makes it an excellent place to run various hacking tools from. An excellent proxy.

    (2) They have very poor administration. Few Mac users, hell few Linux box owners for that matter, are capable administrators. There machines are as vulnerable their last Software Update as last weeks update shows: "Today, Apple released Security Update 2003-08-14, which 'addresses a potential vulnerability in the fb_realpath() function which could allow a local or remote user to gain unauthorized root privileges to a system.'"

    These two facts will draw much more attention to Macs by virus and worm authors.

  9. Default OSX user doesn't run as admin by dr2chase · · Score: 4, Insightful

    Macs derive some benefit from their approach to "administrator rights". I've got them, but to actually do anything, I need to type a password.

    On Windows (at least W2K) if you need administrator privileges, then they're on all the time. Accidentally run a virus while in administrator mode, and it gets to use those administrator privileges, too.

  10. Re:AppleScript, AddressBook, and Mail.app by Anonymous Coward · · Score: 4, Insightful

    You can write such Applescript but you also would have to click yes to a dozen of messages like:

    Do you want to open this?
    Shall I send this mail to these 300 addresses
    Where do you want to unzip this executable
    Shall I start it?
    Shall I make a copy and send to all entries in your address book?

    Then yes, if you are so dumb as to answer "Yes" to all those questions everytime an app gets fired by the Applescript and opens windows on your face then yes, it would be possible.

    On Windows the OS answers "YEEEEEEESSSSSS please do" without you ever noticing what is going on.

    That's why the worm/virii spread so easily on WIndows: it is dumb.
    Also, every Windows app run as 'system' that is even IM or IE is like GOD on Windows.
    Mac applications do not have those rights and more, root user is disabled by default and the average user does not even have the tools to activate it or know how to.

    A virus on Mac would need the active collaboration of the user to spread. On Windows it has the granted collaboration of Windows. Like giving the keys of you mansion to the thieves themselves while you are on vacation.

    Keep trusting Windows, it is so clever :-)

    And oh yes: it is just visibility LOL

  11. Re:bad analogy by exp(pi*sqrt(163)) · · Score: 3, Insightful
    Bragging about Macs not being susceptible to this round of viruses is merely bragging about how few Macs there are...
    That's a perfectly good thing to brag about. Look. We have a software monoculture. Any environmentalist will tell you a monoculture is a bad thing. Choosing an OS with fewer users is a smart move just as exogamous mating is a good way for humans to survive disease. That's something worth bragging about.
    --
    Doesn't it make you feel good to know that our freedoms are protected by politicans, lawyers and journalists.
  12. Automated software updates by tomem · · Score: 4, Insightful

    I didn't see anyone pointing out that Apple has an excellent automated software update mechanism in place, which by default looks weeky for updates and asks if users want them. If you hit return rather than cancel, you get your update. No sysadmin assistance is required, but that factor in Mac adoption is another story. Some users will reject an update because they don't want to take the chance that it requires a reboot (most security patches do not, but other updates often do). But at least during virus scares, the updates are likely to be accepted. If Macs were more common, it seems like the necessary updates would be in place more universally than they are among Windows users.

    Can anyone comment on how effective the comparable process is for PC, Linux, Unix, and whether there is a differential between these and the Mac update process?

    --
    ThosEM