Intego's "Year In Mac Security" Report

← Back to Stories (view on slashdot.org)

Intego's "Year In Mac Security" Report

Posted by kdawson on Monday January 25, 2010 @07:30PM from the almost-popular-enough dept.

david.emery notes the release of Intego's "Year In Mac Security" report (PDF), adding: "Mac OS X and iPhones that haven't been jailbroken fare pretty well (although vulnerabilities exist, there's not been a lot of exploitation). Apple does come in for criticism for 'time to fix' known vulnerabilities. Jailbroken iPhones are a mess. The biggest risk to Macs are Trojan horses, often from pirated software."

132 comments

So, avoid pirated Mac software... by Chris+Tucker · 2010-01-25 19:35 · Score: 4, Informative

...and let Software Update do it's thing with Security Updates.
Don't go online as Root, and really try not to open email attachments that claim to be "Nude Photos of (insert female athlete name here)"
Really, how hard is that?

--
Guaranteed! This comment 100% Anthrax free!
1. Re:So, avoid pirated Mac software... by silentace · 2010-01-25 20:46 · Score: 5, Insightful
  
  So you basically said what PC users do everyday (the ones that don't ever get viruses)...
2. Re:So, avoid pirated Mac software... by Anonymous Coward · 2010-01-25 21:14 · Score: 0
  
  Don't go online as Root, and really try not to open email attachments that claim to be "Nude Photos of (insert female athlete name here)"
  Not looking at pictures of naked females ... easy? Are you a eunuch?
3. Re:So, avoid pirated Mac software... by Anonymous Coward · 2010-01-25 22:00 · Score: 0
  
  Don't go online as Root, and really try not to open email attachments that claim to be "Nude Photos of (insert female athlete name here)"
  Not looking at pictures of naked females ... easy? Are you a eunuch?
  He is running a unix :P
4. Re:So, avoid pirated Mac software... by Gr8Apes · 2010-01-26 00:35 · Score: 0
  
  I guess you missed the IE8 zero day exploit just last week? It's only the latest way in which PC users get owned through no fault of their own.
  
  --
  The cesspool just got a check and balance.
5. Re:So, avoid pirated Mac software... by Anonymous Coward · 2010-01-26 01:48 · Score: 0
  
  not if they are not admin you simplistic moron
6. Re:So, avoid pirated Mac software... by mario_grgic · 2010-01-26 01:50 · Score: 2, Informative
  
  Both Mail and Finder will warn you that what you are opening has been downloaded from the internet and ask you to confirm you want to execute it.
  Each file you download is put into a quarantine and your answer to the question is recorded.
  You generally don't have to worry about opening non-executable files like images, zip files, video files etc. But, you of course, do have to worry about shell scripts, apple scripts, applications and application documents that contain java script (like PDF if you use Adobe reader which almost no one on a Mac does, since Preview app is so much better and it's there on each Mac)
  Any savvy user should already know all these things no matter what platform they use.
  
  --
  As the island of our knowledge grows, so does the shore of our ignorance.
7. Re:So, avoid pirated Mac software... by lseltzer · 2010-01-26 02:17 · Score: 3, Informative
  
  The public exploits only affect IE6 users on XP.
  Private exploits could affect IE7 users on Vista or even IE8 users on XP, but not if they activate DEP. If you activate DEP even XP users are protected. IE8 users on Vista and Win7 are effectively protected by DEP/ASLR.
  So, in effect, if you update even just to year-old technology you're protected.
8. Re:So, avoid pirated Mac software... by DJRumpy · 2010-01-26 02:30 · Score: 1
  
  The exposure for IE (it wasn't targeted at IE8 but IE8 could be vulnerable) will own any XP PC on IE6. If they have XP SP3 and IE7 they are not currently vulnerable to the initial threat, but that will change quickly. If they have XP SP3 and have upgraded to IE8, they are currently safe, unless they then turned of DEP.
  http://blogs.technet.com/srd/archive/2010/01/15/assessing-risk-of-ie-0day-vulnerability.aspx
9. Re:So, avoid pirated Mac software... by scatter_gather · 2010-01-26 02:42 · Score: 1
  
  Any savvy user should already know all these things no matter what platform they use.
  The existence of the "Genius Bar" indicates that savvy users are in short supply.
10. Re:So, avoid pirated Mac software... by Shados · 2010-01-26 03:44 · Score: 1
  
  Perhaps you missed that IE8 with dep and/or uac installed on a version of windows thats not 10 years old didn't have issues? Sure, Microsoft had to put it as vulnerable in their articles because DEP and UAC should be a last line of defence, which doesn't change the fact that there's a bug in the app itself, but good luck getting an exploit to work in that configuration.
  Everytime I see an IE exploit, the first thing I do, just for giggles, is to try to make it work in Vista/Win7 on IE8 with default configuration (on a spare box obviously, just in case). None so far :)
11. Re:So, avoid pirated Mac software... by shutdown+-p+now · 2010-01-26 04:07 · Score: 2, Informative
  
  I guess you missed the IE8 zero day exploit just last week? It's only the latest way in which PC users get owned through no fault of their own.
  It's not like OS X never had glaring 0-day exploits of its own, so what's your point?
12. Re:So, avoid pirated Mac software... by dave562 · 2010-01-26 04:39 · Score: 2, Insightful
  
  Except for those exploits that target Acrobat, or Flash, or .. or .. or.
  Microsoft has made some improvements with DEP and IE8 on Win7, but there are still far too many vulnerabilities in commonly used and widely distributed applications to make me comfortable with Windows.
13. Re:So, avoid pirated Mac software... by Chris+Tucker · 2010-01-26 05:45 · Score: 1
  
  Essentially, yes.
  With the proviso that smart Windows users have the their AV software and definitions all up to date and use something other than Outlook Express and IE for their email and web use.
  
  --
  Guaranteed! This comment 100% Anthrax free!
14. Re:So, avoid pirated Mac software... by ToasterMonkey · 2010-01-26 15:33 · Score: 1
  
  Except for those exploits that target Acrobat, or Flash, or .. or .. or.
  Microsoft has made some improvements with DEP and IE8 on Win7, but there are still far too many vulnerabilities in commonly used and widely distributed applications to make me comfortable with Windows.
  There are many, many vulnerabilities in commonly used and widely distributed software available for any platform.
  Go read just the last month's worth of CVE's
  I know, I know.. you're going to say "but I don't use any of _those_ ones" Hah, gotcha.
15. Re:So, avoid pirated Mac software... by ToasterMonkey · 2010-01-26 15:43 · Score: 1
  
  I guess you missed the IE8 zero day exploit just last week? It's only the latest way in which PC users get owned through no fault of their own.
  
  It's not like OS X never had glaring 0-day exploits of its own, so what's your point?
  Got a z-series in my closet, what's YOUR point?
16. Re:So, avoid pirated Mac software... by Chris+Tucker · 2010-01-26 19:02 · Score: 1
  
  No one denies that there ARE hazards that target OS X.
  But three exploits for Leopard, one of them Intel only (PowerPC user here) another is a Safari exploit vs. the countless exploits for Windows scarcely seem indicate that Mac OS is as vulnerable as Windows.
  As long as there are Windows users who do everything from the root account, and who will insist upon opening "SEE NAKED PICS OF (female athlete name here)!!!!" emails, Windows will continue to be the botnet host of choice.
  
  --
  Guaranteed! This comment 100% Anthrax free!
17. Re:So, avoid pirated Mac software... by shutdown+-p+now · 2010-01-27 04:13 · Score: 1
  
  As long as there are Windows users who do everything from the root account, and who will insist upon opening "SEE NAKED PICS OF (female athlete name here)!!!!" emails, Windows will continue to be the botnet host of choice.
  Can't argue with that. I don't know with any ways to prevent the "social exploits", however, short of the model where user cannot become the admin at all (i.e. the one where he cannot control his own box even if he thinks he wants to) - and Apple seems to be toying with the concept with iPhone (and looks like they can even sell that!). But MS could never afford such a thing.
18. Re:So, avoid pirated Mac software... by vuffi_raa · 2010-01-27 06:18 · Score: 1
  
  Except for those exploits that target Acrobat, or Flash, or .. or .. or.
  those are both java exploits actually-
  personally I can say that pretty much every virus that I have ever gotten is from a java exploit- I wish that there were ways around not having a JRE but too many things use it
19. Re:So, avoid pirated Mac software... by Stupendoussteve · 2010-01-28 17:10 · Score: 1
  
  You're right, I'd rather talk to somebody with a heavy accent named John and wait while he runs through a script, lie and tell him I've restarted when it's not needed, not reinstall Windows like he tells me to and then get a part sent out when a hardware part is broken (nothing like reinstalling Windows to fix a physically broken DVD drive).
  Or just go to the Genius bar, see if they can fix it/have a spare right there, if not they take it and it gets fixed.
  Gotta hate that highest rated customer service.
With great freedom comes great resposibility by BadAnalogyGuy · 2010-01-25 19:44 · Score: 1

Should it be any surprise that unmoderated software could introduce security vulnerabilities? All a CPU does is execute instructions, so "jailbreaking" a phone just gives you the opportunity to run more software which may contain malicious payloads.
When 20/20 took a look at dangerous "exploding" trucks, it was found that if you put a small amount of explosive near the crash area, that you could indeed cause a truck to explode in an accident. But does that mean that the truck company should be found at fault for a usage scenario that is not supported?
Analyze the security of this phone in terms of its default use. It burns up (literally), it causes network packet flooding, and does a bunch of other unwanted things, but don't blame it for something that its users do in direct violation of their TOS.
1. Re:With great freedom comes great resposibility by rsborg · 2010-01-25 20:26 · Score: 3, Insightful
  
  Should it be any surprise that unmoderated software could introduce security vulnerabilities?
  
  Really, the main problem is that jailbreak processes don't try to change your default root password. So the vulnerability is that Apple supplied a default root password (that isn't workable without jailbreak), and the haxx0rs remove the protection but fail to force user to change or randomize (and remember/show to user) that password.
  Nothing bizarre about that.
  
  --
  Make sure everyone's vote counts: Verified Voting
2. Re:With great freedom comes great resposibility by EzInKy · 2010-01-25 20:40 · Score: 0
  
  Should it be any surprise that unmoderated software could introduce security vulnerabilities? All a CPU does is execute instructions, so "jailbreaking" a phone just gives you the opportunity to run more software which may contain malicious payloads.
  Apple should have anticipated that users would want to use software outside of their control and provided detailed instructions on how to do so in a safe manor.
  
  --
  Time is what keeps everything from happening all at once.
3. Re:With great freedom comes great resposibility by grouchomarxist · 2010-01-25 21:08 · Score: 4, Funny
  
  in a safe manor
  My security guards keep my manor safe.
4. Re:With great freedom comes great resposibility by x2A · 2010-01-25 21:11 · Score: 0
  
  "that users would want to use software outside of their control"
  hahaha, it's funny because it's apple! Hardwired batteries, single sheet aluminium cases, Apple don't like letting you into -anything-, control will be theirs... somewhere in rural America (probably) is a giant warehouse, filled with giant crates, which in turn are filled with all the second buttons from the mice, being looked at by "top men". And you thought they were designed with only one button, HA shows what you know. They just only give you one, and keep the other. Rumour has it that from time to time, people in the warehouse will select a few of the second mouse buttons at random, lay them out on the floor, and play Dance Dance Revolution on 'em.
  
  --
  The revolution will not be televised... but it will have a page on Wikipedia
5. Re:With great freedom comes great resposibility by DNS-and-BIND · 2010-01-25 21:16 · Score: 2, Funny
  
  Please don't bash 20/20. Their scientific methodology might have been a little bit off, but their motives were in the right place. They were just trying to show that a major car manufacturer was corrupt...this is the media's job, isn't it? To expose corruption? Unless you can show that the car manufacturer has lily-white hands (and none of them do) please stop the bashing. These are educated, dedicated people who are doing a tough job under very difficult circumstances, and it's hard to get the stories to come out the right way 100% of the time.
  
  --
  Shutting down free speech with violence isn't fighting fascism. It IS fascism!
6. Re:With great freedom comes great resposibility by arb+phd+slp · 2010-01-25 22:11 · Score: 1
  
  When 20/20 took a look at dangerous "exploding" trucks, it was found that if you put a small amount of explosive near the crash area, that you could indeed cause a truck to explode in an accident. But does that mean that the truck company should be found at fault for a usage scenario that is not supported?
  Point taken, but to be fair that was NBC's Dateline that did that, not 20/20.
  
  --
  There's a perfect xkcd for my sig but I'm too lazy to look it up. sudo someone go find it.
7. Re:With great freedom comes great resposibility by bdsesq · 2010-01-26 00:21 · Score: 3, Insightful
  
  Apple either supplies a default root password or it has to build in a backdoor. Otherwise there is no way to upgrade the OS. Which way do you think is more secure?
  The jail break issue isn't Apple's problem. It is a problem with people doing things they don't understand.
  Looks like the jail break is just another way to root kit a computer (phone).
8. Re:With great freedom comes great resposibility by uglyduckling · 2010-01-26 01:28 · Score: 2, Informative
  
  Actually, the 'single sheet aluminium case' being a non-user serviceable part thing is a myth. My MacBook Pro came with printed instructions in a little booklet telling my how to open the back panel and replace the hard drive. It did have strict instructions not to attempt to replace the battery, but when I opened the case the battery was right there next to the hard drive so I'm not really sure why they say that.
9. Re:With great freedom comes great resposibility by mdwh2 · 2010-01-26 01:35 · Score: 4, Insightful
  
  When people point out something the Iphone can't do, we hear "Oh it can, but you just have to jailbreak it". When we get stories about security holes, we hear "Oh that doesn't count, you just have to not jailbreak it".
  So er, which is it?
  The problem is that the Iphone is the only phone where "jailbreaking" is necessary to get basic functionality working (e.g., tethering, running applications that Apple don't like).
  Consider, do you ever hear people talking about "jailbreaking" in the context of any other phone?
  My 5800 works fine, not had a virus (indeed on any of my phones), never needed to hack it.
10. Re:With great freedom comes great resposibility by Brandee07 · 2010-01-26 02:03 · Score: 1
  
  Probably because hard drives are largely inert, while batteries will explode if you do it wrong. Yes, it's perfectly possible to replace the battery yourself, but Apple doesn't want to be liable for your medical bills from the burn unit if you do.
11. Re:With great freedom comes great resposibility by iamhassi · 2010-01-26 02:29 · Score: 2, Interesting
  
  "The problem is that the Iphone is the only phone where "jailbreaking" is necessary to get basic functionality working"
  
  Correct. Something as simple as deleting a call is not possible on the iPhone without jailbreaking, which is shocking because on every cellphone I've used in the past 10 yrs I've had the ability to delete a phone call from the call log and it's a feature iPhone owners have been asking for since 2007. If you want to remove a single call you have to delete the entire phone call log
  
  Honestly I don't know how anyone can use their iPhone without jailbreaking it, unless they're not really using it as a smartphone so they're not installing applications, using data, etc.
  
  --
  my karma will be here long after I'm gone
12. Re:With great freedom comes great resposibility by UnknowingFool · 2010-01-26 02:48 · Score: 2, Informative
  
  What? The jailbreak exploit has nothing to do with jailbreaking itself but the fact that most people that used the process installed SSH onto their iPhones and didn't change the default password on SSH. It had nothing to do with what Apple supplied on the phone but what 3rd parties modified the phone.
  
  --
  Well, there's spam egg sausage and spam, that's not got much spam in it.
13. Re:With great freedom comes great resposibility by socsoc · 2010-01-26 03:27 · Score: 1
  
  This has nothing to do with jailbreaking or upgrading the OS (which flashes the firmware). The password Alpine only leaves those vulnerable who were savvy enough to install SSH, but not smart enough to change the pass.
14. Re:With great freedom comes great resposibility by ColdWetDog · 2010-01-26 03:39 · Score: 1
  
  every cellphone I've used in the past 10 yrs I've had the ability to delete a phone call from the call log and it's a feature iPhone owners have been asking for since 2007
  If you're so worried about your wife seeing your calls to your mistress, get another phone. Or delete the entire log.
  
  While I grant you it shouldn't be hard to delete a single call as opposed to the entire log, I cannot imagine needing to do so.
  
  --
  Faster! Faster! Faster would be better!
15. Re:With great freedom comes great resposibility by JasonBee · 2010-01-26 04:22 · Score: 1, Flamebait
  
  I'm not sure what you mean by "basic functionality".
  My iPhone isn't broken and I have tethering enabled. Sounds like your problem is with AT&T. I'm in Canada under Fido/Rogers so YMMV.
  With "both" companies my tethering is enabled with a quick call. My provider asserts that my data plan must be 1 GB or higher, but this is largely to protect me from ignorantly going over my data plan usage allowances. I go to my settings and turn on tethering. There is no step three ;)
  As for "applications that Apple doesn't [sic] like", you must mean malware, trojans, and data theft mechanisms. If you want to run those by all means do so. You could save yourself some trouble and just write your date of birth and credit card numbers on a placard and hang that around your neck when you head to the mall.
  But I keed.
16. Re:With great freedom comes great resposibility by BitZtream · 2010-01-26 08:28 · Score: 1
  
  How about you don't jail break it if you're a 'fucking moron'? Or in your case, just don't buy one cause you can't understand the basic premise behind both of those statements.
  It isn't open and requires jailbreaking to prevent 'fucking morons' from causing problems.
  So a 'fucking moron' who doesn't know what they hell he/she is doing shouldn't jailbreak it, and those are the people who get exploited, which are the people 'who shouldn't jailbreak it'
  This is the problem with todays hacks. Hackers forgot the point. Now days its all about getting popular, not really street cred, like it used to be. Now they make a freaking GUI app to do all the work, which instantly cuts out the check that prevents 'fucking morons' from damaging their phones because now any 'fucking moron' can do it without any knowledge about WHAT they are actually doing. They then proceed to go to a freshly installed app, click the 'install all' button basically because they think that their Ubuntu desktop machine made them a leet hax0rs who knows everything about computing.
  No, people don't talk about jailbreaking other things because its a term specific to the iPhone. Partly because very few people care about other devices in this way, but I've certainly hacked the firmware on my WinMo phones to do other things the carrier didn't want me to do, I know of people who've hacked Nokia smartphones for various purposes.
  More important however, is that your 5800 has never had a virus ... You know why? The number of them in use is so small that NO ONE gives a shit about it. No one ever hacked any of my old cell phones either, because they weren't the fastest growing device on the market, nor did they have anything a hacker could do to them.
  Take any of your statements without any knowledge about the subject matter and they make sense, but as soon as you have even the slightest clue about the subject manner your post quickly looks like something submitted by a 'fucking moron' who just happens to own a 5800 and thinks they know wtf they are talking about.
  
  --
  Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
17. Re:With great freedom comes great resposibility by BitZtream · 2010-01-26 08:33 · Score: 0, Flamebait
  
  And never once in 10 years have I had a reason to delete a single call from my call log. Perhaps the reason that the feature doesn't exist is because no one of any importance gives a shit? You're asking for a feature with almost 0 usefulness unless you're trying to hide something from someone close to you to perpetuate some lie you've told. In which case, you could just delete the entire call log.
  
  Honestly I don't know how anyone can use their iPhone without jailbreaking it, unless they're not really using it as a smartphone so they're not installing applications, using data, etc.
  I can only assume you mean that because you can't delete a single entry in the call log that you think the phone is unusable, since you most certainly can install applications and use data from multiple networks or local storage.
  If a phone isn't useful to you because you can't delete a single entry from the call log, I'm sorry for you as your life must be very very sad, I truly and sincerely suggest you seek counseling, what you have is very unhealthy.
  
  --
  Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
18. Re:With great freedom comes great resposibility by ceoyoyo · 2010-01-26 08:48 · Score: 1
  
  You're right. On Android they call it "rooting."
  It's not necessary to not jailbreak your phone. Just remember to set your password when you install SSH. Same lesson applies to any machine you install SSH on.
19. Re:With great freedom comes great resposibility by jo_ham · 2010-01-26 08:50 · Score: 1
  
  You DO NOT need to jailbreak to use tethering. My un-jailbroken iPhone tethers just fine.
  You also don;t hear about it in any other context because no other phone is in the same sort of position - a popular device that doesn't do quite what some geeks want, with enough following to change. There are plenty of phones that are locked up just as tightly as the iPhone, with features crippled and controlled (but mainly at the behest of the carrier, not the owner of the App store), but they don;t get much press because people don;t really care about them, or they choose a different phone.
  The iPhone is the first one to come along where people still want it, and are willing to work around the restrictions that are all clearly visible before you buy it. With the availability of Android phones, the market for jailbreaking will probably decrease, since the majority seem to want what Droid has to offer - which is great, it;s just not what is offered by default with the iPhone.
20. Re:With great freedom comes great resposibility by mdwh2 · 2010-01-26 09:31 · Score: 1
  
  One of the standard (and hence, predictable) pro-Apple replies: "Why would you want to do that?"
  That is not an answer to the criticism. Especially not for a company that prides itself allegedly on good UI and being easy to use.
  get another phone
  I did.
  I cannot imagine needing to do so.
  Good for you. Do you post to every discussion about technology, where you don't have a need for a particular thing? Or only to defend Apple?
21. Re:With great freedom comes great resposibility by exomondo · 2010-01-26 12:11 · Score: 1
  
  Apple either supplies a default root password or it has to build in a backdoor. Otherwise there is no way to upgrade the OS. Which way do you think is more secure?
  Or, i dunno, have the user set a password?! Which is then entered when modifications need to be made. You really think it's a good system to base it all on having a default root password do you?
22. Re:With great freedom comes great resposibility by x2A · 2010-01-26 12:44 · Score: 1
  
  I actually didn't even know there was that myth, they seem silly to me because of the heat the core2duos produce, I personally prefer a well vented system, but each to their own, I wasn't after a serious pc vs apple debate, not sure my karma can handle it after the netscape vs ie one a few days back *lol*
  
  --
  The revolution will not be televised... but it will have a page on Wikipedia
23. Re:With great freedom comes great resposibility by exomondo · 2010-01-26 12:58 · Score: 1
  
  As for "applications that Apple doesn't [sic] like", you must mean malware, trojans, and data theft mechanisms. If you want to run those by all means do so. You could save yourself some trouble and just write your date of birth and credit card numbers on a placard and hang that around your neck when you head to the mall.
  Yeah cos that's what apps like Google Voice were all about. Don't spout rubbish like that just because you don't know what you're talking about.
24. Re:With great freedom comes great resposibility by Anonymous Coward · 2010-01-26 14:36 · Score: 0
  
  Skype was banned in canada until recently. As was google voice, which isn't even offered. Please explain your point in more detail. What does google voice have to do with my point?
25. Re:With great freedom comes great resposibility by exomondo · 2010-01-26 15:18 · Score: 1
  
  Do i really have to explain that apps like Google Voice, that most definitely fit the category of:
  
  applications that Apple doesn't [sic] like
  are not
  
  malware, trojans, and data theft mechanisms.
  or do you have no concept of what the above actually are?
26. Re:With great freedom comes great resposibility by Kitkoan · 2010-01-26 16:21 · Score: 0
  
  As for "applications that Apple doesn't [sic] like", you must mean malware, trojans, and data theft mechanisms. If you want to run those by all means do so. You could save yourself some trouble and just write your date of birth and credit card numbers on a placard and hang that around your neck when you head to the mall.
  Or it could be just about every app listed on Cydia http://cydia.saurik.com/ .... which are no malware, trojans or data theft mechanisms... though you can get data theft ones from the app store: http://yro.slashdot.org/story/09/09/29/1933252/Retrievable-iPhone-Numbers-Raise-Privacy-Issue?art_pos=34
  
  --
  Attention... all grammer nazi"s! Is they're anything; wrong with: my post,
27. Re:With great freedom comes great resposibility by Mista2 · 2010-01-26 20:02 · Score: 1
  
  If you are smart enough to jailbreak your phone, but dumb enough not to change root password, you really do get what you deserve.
28. Re:With great freedom comes great resposibility by iamhassi · 2010-01-29 05:27 · Score: 1
  
  "...to you to perpetuate some lie you've told."
  
  like a surprise party?
  
  (Score:5, Flamebait)
  
  oops, sry for feeding the trolls. You may return to your cave now troll, no one wants to hear what you have to say
  
  --
  my karma will be here long after I'm gone
29. Re:With great freedom comes great resposibility by iamhassi · 2010-01-29 05:32 · Score: 1
  
  "If you're so worried about your wife seeing your calls to your mistress, get another phone. "
  
  Why do people assume this? If I want to delete a call, it must be to cheat on my wife? Can't someone throw a surprise party, or maybe just remove telemarketer calls i don't want in the log?
  
  "I grant you it shouldn't be hard to delete a single call as opposed to the entire log, I cannot imagine needing to do so."
  
  well i'm glad you're the foremost authority on what everyone needs to be able to do. I've been looking for you for awhile now and I'll be sure to consult you before making any decisions in the future to see if I need to do it or not.
  
  --
  my karma will be here long after I'm gone
Biggest Mac security threat... by Anonymous Coward · 2010-01-25 19:59 · Score: 2, Funny

Installing Windows.
1. Re:Biggest Mac security threat... by Anonymous Coward · 2010-01-25 20:18 · Score: 1, Informative
  
  The results of pwn2own indicate the contrary.
2. Re:Biggest Mac security threat... by Anonymous Coward · 2010-01-25 20:30 · Score: 0
  
  Installing Windows.
  Is anyone still installing Vista?
3. Re:Biggest Mac security threat... by x2A · 2010-01-25 21:17 · Score: 2, Funny
  
  Yep, I'm still installing it... started last october... it's still only on 78% :-/ What the bet it'll crash at 99%? You know it's like a fundamental law of the universe; the longer any computer process takes, the more likely it will crash when it gets to 99%.
  
  --
  The revolution will not be televised... but it will have a page on Wikipedia
4. Re:Biggest Mac security threat... by CisJokey · 2010-01-25 21:31 · Score: 1
  
  But it does not go to kernel panic when deplugging usb drives
5. Re:Biggest Mac security threat... by x2A · 2010-01-25 22:10 · Score: 2, Informative
  
  Oo you definitely don't want to be deplugging usb drives, you kind of need them to keep their plugs so you can plug them in.
  As for unplugging... what does that? Kernel panic sounds very linuxy, but I've never had that happen, and I've been plugging 'n unplugging up to three usb drives at a time on it (a client of mine's stock has become somewhat disorganised and lost track of what's faulty and what they've used themselves, and as testing harddrives themself is much quicker 'n easier on Linux as you can just badblocks the drive, completely partition 'n filesystem independant, I volunteered. So I was production lining a load of drives, different sizes, using three usb interfaces) ... and yeah, all without problem, apart from when a drive actually did have bad sects, but it didn't affect the machine or anything.
  
  --
  The revolution will not be televised... but it will have a page on Wikipedia
6. Re:Biggest Mac security threat... by gyrogeerloose · 2010-01-25 22:29 · Score: 2, Informative
  
  As for unplugging... what does that? Kernel panic sounds very linuxy, but I've never had that happen, and I've been plugging 'n unplugging up to three usb drives at a time
  I think what he was trying to get at is what sometimes happens on a Mac if a user unplugs an external drive without un-mounting it first, a quirk that Macs have had since at least the System 7 days. I'm not sure why OS X will still occasionally have trouble handling that situation gracefully (although ninety-nine times out of one hundred the only "bad" result is a dialogue box that pops up advising you not to do that again) but it's not really a big deal as long as you remember to follow the proper procedure for disconnecting an external drive on any OS.
  
  --
  This ain't rocket surgery.
7. Re:Biggest Mac security threat... by BitZtream · 2010-01-26 08:36 · Score: 1
  
  Not really. pwn2own requires private exploits that no one knows about, with Windows every known exploit is used as soon as possible. The last winner set on his hack for a year. He didn't find a new one, he just sat on it so he'd have it handy.
  That sort of contest doesn't indicate security in general, unless you're so retarded you think that because an OS didn't get bothered with during the contest that it must therefore be secure.
  
  --
  Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
8. Re:Biggest Mac security threat... by x2A · 2010-01-26 12:55 · Score: 1
  
  Right right right, well osx was the first mac os to be done vaguelly "properly" at the kernel level as far as I remember, with previous os's being semi windows 3.1 level in some respects such as cooperative multitasking rather than preemptive, and proper protected/virtual memory mechanism so buggy drivers/apps could just go walking all over the system. So, definitely wouldn't be surprised if that was the case!
  I'm definitely not a mac lover myself, but one or two friends with the laptops, and had a support contract with a design company at one point who all used macs, and i've not seen that on osx... although, one of my clients customers was having problems last week with a USB external dvd burner... you could burn one disc, but then after it was done 'n after it ejects, the drive wouldn't return again, can't remember if it just wouldn't pick up more discs or powered down or what, but that sounded like a USB/driver problem as the drive works fine otherwise... just have to do a cold reset (I /think/ just of the drive, but maybe OS) in between burnings, which makes things less than convenient!
  
  --
  The revolution will not be televised... but it will have a page on Wikipedia
9. Re:Biggest Mac security threat... by mjwx · 2010-01-26 13:11 · Score: 1
  
  Not really. pwn2own requires private exploits that no one knows about, with Windows every known exploit is used as soon as possible.
  That's a great argument against Security Through Obscurity, which happens to be Apple's MO. Security Through Obsucurity works so poorly that even Microsoft has given up on it.
  
  That sort of contest doesn't indicate security in general,
  Demonstrating how quickly a zero day exploit can be created and deployed has nothing to do with security in general.
  
  unless you're so retarded you think that because an OS didn't get bothered with during the contest that it must therefore be secure.
  Unless you're so retarded that you think an OS didn't get attacked.
  
  The Mac laptop went down first on day two to a Safari exploit. Note that day two is before any additional plugins like Flash and Java are installed. The Vista laptop went on the night of the third day due to an Adobe Flash exploit. The Ubuntu laptop survived the entire ordeal. So realistically Vista/IE7 and Ubuntu/Firefox survived where OSX/Safari didn't because it was easier to find an exploit for Safari.
  
  In reality Apple is not attacked because there is no money in it. There's just not enough Mac machines around to make an effective botnet nor are they as powerful as Linux servers so they make poor spam hosts. Windows is the low hanging fruit and has the numbers on the desktop, Linux has the numbers in high powered computing, OSX is simply not big enough to bother with, this does not make OSX more secure.
  
  --
  Calling someone a "hater" only means you can not rationally rebut their argument.
'Pretty well' isn't good enough by Anonymous Coward · 2010-01-25 20:17 · Score: 2, Interesting

Apple doesn't care enough about security.
1. Re:'Pretty well' isn't good enough by mario_grgic · 2010-01-26 02:05 · Score: 3, Informative
  
  The article you like to is talking apples and oranges literally. If the implication is that BSD bug is also a bug in OS X, then it's false. The bug is not present in OS X.
  iPhone on the other hand is a completely different beast and yes it is locked down platform mostly for the benefit of the users, so we don't have to worry if an application is safe to install and use.
  Yes, there may be security issues in iPhone apps, but even the security updates of applications go through the same review process, which may catch an omission in the review of the previous version (which is what happened in the case of the software discussed in the article).
  The review process is not perfect nor ideal, but I for one am thankful that someone else is testing the applications for me and I don't have to waste the time and money on tools to check what each app does and it it is safe to use on my phone.
  
  --
  As the island of our knowledge grows, so does the shore of our ignorance.
2. Re:'Pretty well' isn't good enough by Kitkoan · 2010-01-26 16:31 · Score: 0
  
  iPhone on the other hand is a completely different beast and yes it is locked down platform mostly for the benefit of the users, so we don't have to worry if an application is safe to install and use.
  Thats what is called Big Brother from the book 1984... maybe you've heard of it? http://en.wikipedia.org/wiki/Big_Brother_(Nineteen_Eighty-Four)
  I do love how the original Apple comerical from 1984 http://www.youtube.com/watch?v=m8_uQgnuG1Q claims that Apple with help make 1984 not be like 1984... yet locks down its hardware to run only its OS, their music players to only work with its iTunes software (the newer models aren't working as well if at all, and you can't re-flash the BIOS which happened with the 5th gen), and their iPhone which only allow you to use whatever software the Party... I mean company deems is ok for you to use. I also love the irony of the 'updated' commercial to show to woman now is wearing an iPod, re-writing history to make it 'pseudo' seem like it had always been, just like how books and magazines had been done in 1984...
  
  --
  Attention... all grammer nazi"s! Is they're anything; wrong with: my post,
3. Re:'Pretty well' isn't good enough by mario_grgic · 2010-01-27 08:34 · Score: 1
  
  So don't buy one. See how easy that is. If you want a phone you can flash ROM on, install OS you want it, develop apps for it you want, and choose provider you like, shop elsewhere (I don't know of any that will let you do all those things).
  It's not like Apple advertised you could do all those things with an iPhone and we now find out you can't. iPhone was meant to be an appliance (a phone) from day one and not a general purpose computing device like their laptops.
  If they ever started doing that with their desktop/laptop computers I would never buy one.
  
  --
  As the island of our knowledge grows, so does the shore of our ignorance.
4. Re:'Pretty well' isn't good enough by Kitkoan · 2010-01-27 17:44 · Score: 0
  
  So don't buy one. See how easy that is.
  I'm not going to buy one. But being silent of the problems and keeping them only to myself is also not a solution either. In fact being silent is more likely to help the problem since it won't bring to light the problems
  
  --
  Attention... all grammer nazi"s! Is they're anything; wrong with: my post,
You can't handle the truth by kindnation · 2010-01-25 20:30 · Score: 1, Informative

As much as Intego wants to present the state of malware on the Mac, the truth is that even Intego works pretty much like any other AV engine which tries to detect malware based on its signature or heuristics (behavioral), that they receive either from someone sending them a sample or collected with their honeypots around the world.
The bots/trojans/RATs that are written for specific targets, do not have a signature, thus, are undetected. Then it becomes obvious that Antivirus solutions are not enough. You also need to control the apps that are reverse connecting (phone home), with products like (Little Snitch).
What they don't address are the vulnerabilities that exists in every day applications, which subject to a stack buffer overflow, will execute code in memory with the same level of permissions as the application/daemon that is running. Antivirus doesn't provide any protection for exploits in software.
On a side note, Intego mentions a "crack" for CS4 which is actually a Trojan, but doesn't mention that Adobe's own CS4 install tries to phone home.
1. Re:You can't handle the truth by x2A · 2010-01-25 21:24 · Score: 2, Funny
  
  "but doesn't mention that Adobe's own CS4 install tries to phone home"
  Riiight... cuz that's what trojans are famous for isn't it... checking to make sure that you're allowed to run then. My god I do wish trojans actually did do that, and better than other software does it. I'll admit on here, I don't legally own any trojans at all, which means all I have to do is make sure that they can phone home to verify this, and never have to worry about them again! Ahh... pleasant thoughts.
  
  --
  The revolution will not be televised... but it will have a page on Wikipedia
2. Re:You can't handle the truth by intheshelter · 2010-01-26 03:21 · Score: 0, Troll
  
  Riiight. . . cuz that's what he was getting at, legally running a trojan. My god I do wish you were smart enough to get the point he was trying to make about CS4. That he doesn't want crap phoning home from his machine. ANY crap!!
3. Re:You can't handle the truth by x2A · 2010-01-26 13:07 · Score: 1
  
  Wow you're really clever, I had no idea, ya know I was actually thinking he was talking about a giant wooden horse that could make DTMF tones into skype whenever he played counter strike four, so it could secretly tell his opponent, ET, where to shoot. My google I wish even harder you were self monitoring and reporting to yourself how much dang it, would be so swell if you could teach me all about understanding abstract concepts seeing as you got my point but I didn't get anybody's. This is how stupid I am, right now... your reply, to me, seems like you're hitting on me.
  
  --
  The revolution will not be televised... but it will have a page on Wikipedia
Re:bad karma by pipatron · 2010-01-25 20:30 · Score: 1

See, that's why it's called karma. Your previous posts clearly shows that you're an immature idiot without anything to say except to waste everyones time.

--
c++; /* this makes c bigger but returns the old value */
my summary of the white/sales paper - fluff mostly by prawn_narwp · 2010-01-25 20:31 · Score: 4, Insightful

This is basically 7 total pages:
* first couple pages on installing bitorrent'd software
* Page 4 and 5 about people who installed openssh on their jailbroken iphones and didn't change their passwords
* last page has citations back to their own blog
The meat of it is about PDF, Java -- surely those have a more widespread effect right? But they spend a lot less words on those topics. Note that all the visuals have to do with the stupid ssh-admin-password and bittorent'd malware.
Skip to the concluding paragraph -- they just have to emphasize the iphone again.
I was going to say "I declare this posting unfit for Slashdot" but the good I see is that we can pick it apart to sort out the fluff.
My rating system on severity overall on the entire population of apple products:
1) pdf/java (5 stars)
2) I-enabled-ssh-w/o-a-password (1 star - you're fault for being a retard)
3) Charles Miller iphone vuln (5 stars when it wasn't patched)
lose/lose by starbugs · 2010-01-25 20:38 · Score: 2, Funny

lose/lose (from the article) seems like a fun game to play right before installing Debian.
Re:we don't need economic buzz by icebike · 2010-01-25 20:55 · Score: 4, Funny

We need an economist to explain us how the us, by privatizing gains and socializong losses turned into a fascist state.
And an English teacher to straighten out that sentence.

--
Sig Battery depleted. Reverting to safe mode.
Re:we don't need economic buzz by value_added · 2010-01-25 21:00 · Score: 2, Funny

And an English teacher to straighten out that sentence.
I think it's Korean.
Re:my summary of the white/sales paper - fluff mos by Stuarticus · 2010-01-25 21:49 · Score: 1

You forgot to mention the shiny shiny screenshots of the product!

Surely something with a button that big and red must be awesome.

--
If you think someone isn't free to have a different definition of "freedom" you may be a tyrant.
Re:my summary of the white/sales paper - fluff mos by x2A · 2010-01-25 21:52 · Score: 1

"* last page has citations back to their own blog"
*lol* it's like when some breaking story (ie, any story) hits the news, but perhaps controversial or unconfirmed, and they say "it has been reported that blah blah blah" and then you flick over the channel and they're saying "blah blah has reported that blah blah blah", and it doesn't take long to notice that all people are telling you is that people are telling you what they're telling you.
Someone somewhere get tipped off about some rumour, phones someone he knows in another network says "have you heard about blah blah" and they have, as they received the same tip off. So guy on other end of phone mouths over too his boss saying "it's whatshisname over at thingy, they're going with the blah blah story" so the boss says "we'll go with it, put it on the 10 bullitin after the bit about the elephant who only has a monkey sized head". "Yeah we're going with the story" he says back, so now the first person says to his boss "yeah they're already going with it" and so gets it on their 10 o'clock bullitin too.
I can prove that it happens - check out the replies to this comment here

--
The revolution will not be televised... but it will have a page on Wikipedia
Re:cue the iZombies by x2A · 2010-01-25 21:57 · Score: 1

"any potential problem a Mac might possibly have A: is actually a feature B: is actually your own fault or C: doesn't matter"
Macs are just weird... on my windows machine, both A: and B: are redundant as it doesn't have a floppy drive and C: really does matter cuz the bootloader's there. Like Chalk 'n iCheese.

--
The revolution will not be televised... but it will have a page on Wikipedia
WTF, people. by Anonymous Coward · 2010-01-25 21:57 · Score: 2, Interesting

The ability to jailbreak is a security hole. Last I knew the techniques people use are remote code execution.
For example as I recall the 1st gen jailbreak was to get a specially crafted TIFF file that exploited a buffer overflow when a page was loaded in Safari. Stop and think about that for a minute. This is the kind of behavior you don't want to be possible. Yet in the reality distortion field, it's a great thing suddenly. Users are totally unconcerned about this.
I'm not sure if the exploit mechanism has changed since then, but... Personally, I stopped paying attention to iPhone when I witnessed that.
1. Re:WTF, people. by dangitman · 2010-01-26 02:09 · Score: 1
  
  This is the kind of behavior you don't want to be possible. Yet in the reality distortion field, it's a great thing suddenly.
  
  Ummm, citation needed?
  
  --
  ... and then they built the supercollider.
2. Re:WTF, people. by TJamieson · 2010-01-26 03:03 · Score: 2, Informative
  
  FWIW, this has changed about jailbreaking. What you said used to be true on the 1.x series of iPhone software, where everything always ran as root. Therefore, a hole in libTIFF lead to (remote) root code execution. Starting with the 2.x series, Apple finally forced the restricted user account named Mobile to be used instead of root. That made it so now a libTIFF exploit *also* would require a privilege escalation exploit rolled inside; made things much harder. Starting around the 2.x software, the new way to jailbreak is by exploiting Apple's software update mechanism built into each device (Google: iBoot). This means that to jailbreak newer software/devices, one is required to attach the device to the computer first; the exploit is then done via USB.
  
  --
  For the last time, PIN Number and ATM Machine are redundancies!
3. Re:WTF, people. by JasonBee · 2010-01-26 06:31 · Score: 1
  
  http://secunia.com/advisories/27213/2/
  Yeah that is ancient news my friend. It was patched with OS version 1.1.2. in 2007 if my information is correct.
  iPhones and iPods can now run OS version 3.1+
  I would say that pretty much anyone going online has patched as version 3 of the OS brought copy/paste functions.
  I can't imagine using my iPhone or iPod without copy/paste.
so what they are saying is... by thephydes · 2010-01-25 22:10 · Score: 1

don't jaibreak your iphone, don't trust bittorrent, don't visit suspect sites, don't click on emailed links that are not from trusted sources - well DUH!
1. Re:so what they are saying is... by Anonymous Coward · 2010-01-26 04:12 · Score: 0
  
  don't jaibreak your iphone
  What good is a shiny brick that works in mysterious ways, and not how its owner wants it to?
2. Re:so what they are saying is... by BrokenHalo · 2010-01-26 04:17 · Score: 1
  
  so what they are saying is... don't jaibreak your iphone
  
  I think I'll just settle for not buying one. ;-)
Apple's DRM seems to be the main problem by DrXym · 2010-01-25 22:23 · Score: 3, Insightful

If Apple didn't put such draconian limits on what a person could do with their own property, perhaps there wouldn't be the need to "jailbreak" it.
1. Re:Apple's DRM seems to be the main problem by RMH101 · 2010-01-25 22:53 · Score: 3, Informative
  
  THis is missing the point. The reason jailbreaking is allegedly unsafe is because once jailbroken, you can install SSH, and if you're dumb enough to not change the default root password, you can get owned. You get warned about this specifically when you install SSH anyway. If the phone were sold "open" and you installed SSH, you'd have the same issue. The point is that if someone goes out of their way to install SSH on their phone (which is a pretty hardcore geek activity anyway) and doesn't change the root password, then they're kind of asking for trouble.
2. Re:Apple's DRM seems to be the main problem by Anonymous Coward · 2010-01-26 00:05 · Score: 0
  
  You're an idiot.
3. Re:Apple's DRM seems to be the main problem by jo_ham · 2010-01-26 00:34 · Score: 1
  
  So, you're blaming Apple for a user's inability to think umm, I am installing SSH on my device, maybe I should not use the default root password".
  Right.
  Is it also Ford's fault that I can't easily get into my car because of the draconian limits on copying car keys when I lose my main and spare set?
4. Re:Apple's DRM seems to be the main problem by DrXym · 2010-01-26 01:01 · Score: 1
  
  People who jail broken phones don't care about ssh. They just want phones which work on other networks and with unsigned apps. It is a direct consequence of Apple locking their phone down in draconian ways that people want to jailbreak. Thus they turn to software cracks.
  If the reasons that motivate most people to escape were addressed, then so would the unintended side effects. There would be a fraction of the hacks if a) Apple sold a proper unlocked network free model and b) Provided a simple and painless way for people to legally unlock phones when their contract expired and c) didn't have such absurd restrictions on the kinds of app you can run on a phone.
  As for your analogy, a better one would be a prisoner escaping confinement and promptly being run over by a bus. Perhaps they should have looked both ways when crossing the road, but it doesn't invalidate any reason they may have wished to escape in the first place.
5. Re:Apple's DRM seems to be the main problem by indiechild · 2010-01-26 01:13 · Score: 1, Troll
  
  iPhone unlocking has nothing to do with jailbreaking. I unlock my iPhone but I definitely don't jailbreak it (don't want the instability and hassle of dealing with stuff that comes from non-official sources).
6. Re:Apple's DRM seems to be the main problem by RMH101 · 2010-01-26 03:22 · Score: 1
  
  Well, if your carrier won't unlock you (interestingly O2 UK will do at any point, for free, for pay-monthly customers!) then you *have* to jailbreak it to unlock it.
  My jailbroken phone isn't unstable...
7. Re:Apple's DRM seems to be the main problem by intheshelter · 2010-01-26 03:26 · Score: 1
  
  Draconian? Really? I own many Apple products and I am rarely stopped from doing anything. Perhaps your hatred of Apple has colored your post to the point that it's ridiculous hyperbole?
8. Re:Apple's DRM seems to be the main problem by socsoc · 2010-01-26 03:35 · Score: 1
  
  Ummm... You have to jailbreak in order to run the unsigned code to unlock it. Unless you perform magic.
9. Re:Apple's DRM seems to be the main problem by DrXym · 2010-01-26 03:53 · Score: 1
  
  I think it is quite obvious that I was referring to the iPhone here. It is also quite obvious that the restrictions on the phone are draconian, as witnessed by the large demand for jail broken devices.
10. Re:Apple's DRM seems to be the main problem by david_thornley · 2010-01-26 05:38 · Score: 1
  
  How big is the demand for jailbroken devices? I know there are a lot of people on /. that would almost reflexively jailbreak one if they owned it, but how does that translate to the general population? Hardcore geeks like us are neither typical of people in general nor Apple's target market.
  I have an iPhone with quite a few apps on it, and it's not jailbroken. This means that any software I install on it gets at least a screening from a company that has a lot to lose by allowing malware on the phone. I find it very useful. The "draconian" restrictions mean that I have a usable phone and web browser and email reader that I'm not going to lose by installing the wrong software.
  When I want to program something, I usually use the laptop. It's much more convenient, I can do more with it, and if I screw up (with my own software or somebody else's) it isn't as vital.
  
  --
  "When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
11. Re:Apple's DRM seems to be the main problem by DrXym · 2010-01-26 06:45 · Score: 2, Insightful
  
  This means that any software I install on it gets at least a screening from a company that has a lot to lose by allowing malware on the phone.
  They also have a lot to lose by allowing apps like voip, instant messaging, map readers, voice search, flash player, browsers, podcasters, movie players, music players, file downloaders etc. etc.. Basically anything that competes with their tech, or offends the network, or they simply don't like on grounds of taste or any other arbitrary reason. They even ban apps with scripting / runtime capability even extending to the absurd banning of a C64 emulator lest somebody figure a way of using it to jailbreak the phone. It's not even the small fry that have been hurt - Google have had apps rejected.
  The restrictions are draconian, and it isn't surprising given the above, and the way the device is locked to certain networks (even outside of contract) that people want to jailbreak it.
12. Re:Apple's DRM seems to be the main problem by Anonymous Coward · 2010-01-26 06:55 · Score: 0
  
  >>If Apple didn't put such draconian limits....
  
  Really, just shut the fuck up, douche.
13. Re:Apple's DRM seems to be the main problem by jo_ham · 2010-01-26 07:52 · Score: 1
  
  The two are *totally* unrelated. Unlocking to other networks has *nothing* to do with jailbreaking your phone.
  Nor does jailbreaking itself cause you to be vulnerable - you need to also install SSH as well.
  If you are installing SSH, you really ought to know what you are doing.
14. Re:Apple's DRM seems to be the main problem by jo_ham · 2010-01-26 07:55 · Score: 1
  
  Or you just ask your carrier to unlock it for you. O2 will do it for you here in the UK now that the exclusivity deal has finished.
  Locked phones are not unique to to Apple.
  Jailbreaking the phone to run the unsigned unlock code also doesn't make you vulnerable. Installing SSH and not changing the default password does. That is a separate thing.
15. Re:Apple's DRM seems to be the main problem by jo_ham · 2010-01-26 08:58 · Score: 1
  
  The locking to network is not Apple's beef - they don;t care one way or the other (or in fact, prefer unlocked since it means they can sell more phones). You can get your iPhone unlocked by just asking your carrier (note: does not work in USA).
  The main point is that everyone knows ahead of time about the walled garden, and yet wants in anyway - only to them complain that they are in a walled garden. This is what Android is for!
16. Re:Apple's DRM seems to be the main problem by david_thornley · 2010-01-27 13:46 · Score: 1
  
  Flash player? You're assuming that I want the number one security vulnerability installed on the phone that's also my PDA, browser, game machine, etc. I depend on my iPhone. I don't feel fully dressed without it. I don't want stuff on it that's likely to compromise it.
  
  --
  "When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
17. Re:Apple's DRM seems to be the main problem by DrXym · 2010-01-27 20:10 · Score: 1
  
  I'm not assuming anything. Apple explicitly doesn't want any alternative stack through which people can avoid paying Apple money. It has absolutely nothing whatsoever to do with security.
18. Re:Apple's DRM seems to be the main problem by david_thornley · 2010-01-28 01:22 · Score: 1
  
  Not assuming anything? Seems to me you're assuming Apple's motives are what you attribute to them. Do you have any evidence that Apple's lockdown is not due at least partly to security and the desire to present a seamless experience?
  
  --
  "When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
19. Re:Apple's DRM seems to be the main problem by DrXym · 2010-01-28 10:54 · Score: 1
  
  Yes, their absolute refusal to support any kind of runtime environment. Flash, Java, Silverlight - anything. Even a C64 emulator which provided access to CBM Basic was banned. They don't want anything that competes with their app store. Security is *way* down the list of reasons for this.
20. Re:Apple's DRM seems to be the main problem by david_thornley · 2010-01-31 11:21 · Score: 1
  
  Do you know this through insider knowledge, or are you reading the minds of top Apple execs? You seem awfully sure of the motives of people that you show no sign of knowing personally.
  
  --
  "When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
Talking through their hat since 2004 by argent · 2010-01-25 23:06 · Score: 3, Informative

Back in 2004 Intego's big complaint about the Mac was that because it's based on UNIX, if you could get it to execute a shell script you could do anything on the computer, and that Applescript wasn't sandboxed. They never noticed that the same was true of CMD.EXE and VBscript on Windows, DCL on VMS, and every other native scripting environment on every OS, ever, anywhere.
Intego's business model appears to be FUD.
Mac keyboard firmware security issue (keylogger by blankoboy · 2010-01-25 23:34 · Score: 1

I recall reading this (URL:http://www.semiaccurate.com/2009/07/31/apple-keyboard-firmware-hack-demonstrated/) last year but never heard any follow up from Apple. Does anyone know if there was actually any firmware release for this to close this potential security hole? It appears the likelihood of this getting exploited is rather small (requiring local access at this time) but it still warrants a response from Apple IMO.
1. Re:Mac keyboard firmware security issue (keylogger by AHuxley · 2010-01-26 01:22 · Score: 1
  
  Take your pick
  Its an active hole in the wild used by anyone. (no hint yet?)
  Its an active hole in the wild used by the NSA, CIA, FBI. (not going to be fixed anytime soon)
  Its not an easy hole to use in the wild. (no chatter yet?)
  Apple staff are so distracted by itoys. :)
  
  --
  Domestic spying is now "Benign Information Gathering"
Jailbroken = not Apple's responsibility by Anonymous Coward · 2010-01-25 23:51 · Score: 0

I would think that would be obvious.
Re:we don't need economic buzz by Anonymous Coward · 2010-01-25 23:52 · Score: 0

We need an economist to explain us how the us, by privatizing gains and socializong losses turned into a fascist state.
And an English teacher to straighten out that sentence.
No you dont need an english teacher here.
The meaning is still there and I can see what the person is thinking.
I just have no idea what prompted this passage as we are talking about computers getting viruses/hacked right?
Re:Macs are not secure. by mdwh2 · 2010-01-26 01:40 · Score: 1

The particular problem is the false claim in their adverts of PCs getting viruses, since you could just run Linux (not to mention that Macs are PCs anyway). If they were comparing to Windows, it would be fair enough, but they don't. Possibly it's to avoid getting sued, which makes me suspect that they have no confidence in their claims in the first place (if the claims were true, it wouldn't be a problem to mention Windows).
Re:my summary of the white/sales paper - fluff mos by socsoc · 2010-01-26 03:32 · Score: 1

i see what you did there.
Re:Macs are not secure. by damnbunni · 2010-01-26 03:47 · Score: 1

The vast majority of computer users aren't aware that 'PC' does not mean 'x86/x64 based architecture running Microsoft Windows'.
Trying to cram too much information into a 15 or 30 second spot is just asking for fail. Commercials (for anything) need to be kept simple.
Not so fast by Swift2001 · 2010-01-26 05:28 · Score: 0, Redundant

I ran a Windows computer at work. And I had one at home. Never had a problem.
Then I went to another office. We had to spend a fair amount of time researching on the Web. All it took was one person landing on an illicit web site, and the shit hit the fan. All of a sudden, one after another, everybody's hit with trojans and God knows what else. No IT guy to run the thing, so I became the informal computer guy. Several computers are taken out and got the OS rebuilt. The only way to protect against the exploit that hit us is to update the OS. I do so, everything's fine with my machine. One computer after another gets hit with "You may be the victim of pirated software." Uh-oh. Turns out the boss bought the licenses for the software we used with Windows 2000. So then he upgraded to XP, but before the Microsoft Malicious Software (?) removal tool, nobody knew. Now it's picking up the proprietary program, reading the license, and going uh-uh. Can't upgrade. The new licenses would be about $8,000 per computer per year. (From the third-party software vendor. They only sell their program with the support, which costs that much. And they urge you to upgrade to the new version, which is another $13 grand.)
But we're going into recession. Not going to happen. So we have to go back to IE6 and Windows 2000 on some computers. They get hit again with web-based malware. It infects other software on the network. Could a good IT guy have fixed this? Yeah. We had 8 employees, and suddenly the phone wasn't ringing with the big contracts.
In the meantime, the Mac we had on the network for graphics and video conversions -- running like a top. Sure, I know. There are warning signs that show up on Security experts' blogs. Never, since I got a Mac in 1986, had an actual piece of malware. I realize I was a bit lucky in the early days, but I didn't exchange floppies with idiots, so I didn't get those old viruses.
You mean OSXWindows? by Ilgaz · 2010-01-26 06:15 · Score: 1

Some fan guy modded you flamebait but, I guess you mean installing boot camp or a virtual machine (hypervisor) and running it just like OS X, without antivirus/firewall and giving it access to OS X file structure.
IMHO Apple made a huge mistake by allowing (SL Bootcamp) Windows to see (read only though) OS X drives. That is not a favour, it is a huge security risk especially for Mac only people not knowing the extent of Windows threats/trojans/data leakage.
Fix? "My Computer", "Manage", "Disk Management", remove drive letter of the OS X drives. At least 99.9999 malware which isn't very modern will fail to find the personal files to steal.
To the "my virtual machine resets itself each boot" guys: If some real mean thing hits you, have fun explaining why your IP/computer was involved in some child porn distribution network "until it rebooted". Run some antivirus, it is NOT Mac once it runs Windows.
1. Re:You mean OSXWindows? by Anonymous Coward · 2010-01-26 09:59 · Score: 0
  
  Encrypt, Encrypt, Encrypt...
  That's the only way to make sure anything windows will not read those files.
  (although even encryption fails sometimes)
  As to my post being modded 'flamebait', at first it was modded funny(+1) now it's modded troll. That's why I posted as anonymous coward. But it's neither funny nor a troll.
  RE: Windows...
  The amount of malware targeting windows vs OS X is greater by a few orders of magnitude. Any freshly patched version of Windows will have a greater chance of being scanned and (because of a vulnerability) placed into a botnet than any equally patched OS X.
  Part of this is because it's more popular, another part is because Windows begun as a 'single' - 'independent' computer OS. Even though Vista and 7 are based on NT they suffer from many of the problems carried over from its siblings (DOS, W98, W.ME) days.
  Windows was created and designed by a company that owes its success to IBM and the explosion of PC's in the 80's and 90's. Windows is not #1 because of quality. If 'classic' Mac OS (6,7,8,9) were still used, it might be more vulnerable than Windows. But when OS X was introduced - Apple inherited a 'networking' history that reaches back to the 70's and was used to build the internet.
  OS X is a system that from the onset is a multi-user networked OS and has been refined for decades.
  Windows is a system that was designed to compete with Unix and keep the familiarity and compatibility of the (at that time) DOS based (un-networked) system that MS was also selling.
  These designs are like night and day. And as I think that the mind-sets at the two companies will not change anytime soon, Windows will always play catch-up to OS X.
  The moment you install Windows, your system becomes more vulnerable than OS X.
Software updates,activations and anon statistics by Ilgaz · 2010-01-26 06:22 · Score: 1

So, original Adobe CS4 user who paid more than $1000 and gave his credit card number, home address and telephone should be protected from "evil Adobe" from checking updates or trying to figure which parts of software is used anonymously?
Well, Intego and couple of other companies offer a application firewall but, obviously if you use original/activation system software, it will fail to work if it can't access to net. Solution is GIMP but, it would be a bit unrealistic.