I was a PC user, and professional supported it, for approximately thirteen years.
During that period of time, I reinstalled Windows both for myself, and many others, hundreds of time due to general Windows instabilities, viruses, etc...
Hundreds.
Since converting to MAC OS X about two years ago I have done a single install of an operating system
One.
From Snow Leopard to Lion.
During that time, my MBA has sometimes remained on for months at a time, going to sleep only when required, and it's been nice having a system that screams along without having to blow CPU cycles dragging bloated anti-virus software along with it.
My experience is not one of the minority.
Mind if we file your advice in the circular storage cabinet?
I was a PC user, and professional supported it, for approximately thirteen years.
During that period of time, I reinstalled Windows both for myself, and many others, hundreds of time due to general Windows instabilities, viruses, etc...
Hundreds.
Since converting to MAC OS X about two years ago I have done a single install of an operating system
One.
From Snow Leopard to Lion.
During that time, my MBA has sometimes remained on for months at a time, going to sleep only when required, and it's been nice having a system that screams along without having to blow CPU cycles dragging bloated anti-virus software along with it.
My experience is not one of the minority.
Mind if we file your advice in the circular storage cabinet?
Not necessary, this is digital.
In my 20 years of using computers for work, I cursed Windows up through and including XP. I started using WIndows 7 about two years ago and have not had a fault since. I have had ONE blue screen, and that was when I knocked a card out of its slot. Also, no viruses, but perhaps that's because I'm careful.
Whereas OS X is far more coherent in visual presentation than Windows 7, is it far less stable and far less consistent in behavior. Don't take my word for it, look at the list of OS patch crashes I listed, and that's just what I remember off the top of my head. Maybe *you* didn't have those crashes, but LOTS of other people did. Apple has a very narrow band of hardware to support, it is ridiculous that those things happen. If you want to make excuses for Apple, then the balance of it is that in the two years I was using Windows 7, not one patch caused any trouble.
Anyway, perhaps we should all have a reunion when Apple's desktop share has doubled. I'll bookmark the thread.
Here are the facts regarding Apple OS X security and privacy. Apple OS X 10.7 Lion is the most secure commercial operating system in widespread use.
Apple offers a Software Update control panel within the Mac App Store for automatic download and installation of Apple system software updates.
Apple provides a clear indication when installing software from third party sources on the Internet. Apple requires an administrator password when installing software unless the software is signed and installed from the Mac App Store although the Mac App Store requires the Apple iTunes username and password to purchase software.
Java Runtime (OpenJDK Project for Java on Mac OS X updates available from Oracle) and Adobe Flash (updates available from Adobe) are no longer bundled applications beginning with Mac OS X 10.7 Lion. The removal of Adobe Flash and Java Runtime remove a large number of potential exploits.
Application Sandboxing (Safari, for example, has now been divided into two processes that separate the browser's user interface and other functions from the part that parses JavaScript, images, and other web content) prevents applications from executing code in other applications.
Apple maintains a non-published list of possibly fraudulent websites which may optionally be used for warning users when visiting such websites. Apple Safari provides an option to block all website cookies, allow cookies only from visited websites or allow all cookies. Beginning with OS X 10.8 Mountain Lion, Safari provides an option to deny website from accessing location services, prompting once each day or prompting once only. Apple Safari provides a "Do Not Track" option for compliant websites. Further privacy and security features and functions are provided via third party Safari extensions.
Apple Keychain allows users to save passwords and textual data encrypted in protected keychains. Apple Safari allows users to save usernames and passwords to visited websites.
For applications that a user may download from an unknown source Apple OS X 10.7 Lion offers file quarantine with malware detection to prevent code execution and determine if the file is a known threat.
In order to avoid the potential for users accidentally downloading and installing malicious software Apple introduced the Mac App Store in Mac OS X 10.7 Lion to provide a curated application (cursory review) purchasing experience with signed code. Apple extends the Mac App Store in OS X 10.8 Mountain Lion by introducing Gatekeeper which is an option to prevent installation of apps not from the Mac App Store and non-signed code.
In the unlikely event that an application is able to execute malicious code, Apple provides Address Space Layout Randomization (ASLR) including heap, stack, and dynamic linker which randomly arranges the positions of key data areas by obscuring memory addresses. Address Space Layout Randomization is valuable because attempting to inject code into an incorrect memory address will cause errors in the malicious code.
Apple OS X 10.7 Lion provides disk encryption for the entire disk (rather than only users' home folders) at the block level using XTS-AES 128 encryption. Encryption of external USB and FireWire drives is supported. Apple enables the administrator to designate a number of user accounts authorized to decrypt the system disk. A recovery key as well as Instant Wipe which removes the encryption key from your Mac instantaneously, making the data completely inaccessible are provided. Once the encryption key is erased, the Mac performs an entire wipe of the data from the disk.
If all else fails, Apple provides a Recovery Partition which was introduced in Mac OS X 10.7 Lion to allow users to easily restore their computer. Apple Time Machine provides an intuitive user interface for backup so users can restore corrupted data from a storage device. Apple Time Capsule integrates with Time Machine very well although third party solutions are also supported.
Apple provides a Secure Guest Account (an account that the system erases and resets at logout) for allowance of temporary use by authorized persons.
Apple OS X 10.8 Mountain Lion introduces Application level Privacy settings including Location Services to avoid unauthorized disclosure of personal information to legitimate applications which may not require invasive disclosure of personal information.
Apple provides extremely robust Parental Controls, allowing parents to; limit usage per day, limit which hours used per day, limit websites, limit applications and more.
Here are the facts regarding Apple OS X security and privacy. Apple OS X 10.7 Lion is the most secure commercial operating system is widespread use.
Apple offers a Software Update control panel within the Mac App Store for automatic download and installation of Apple system software updates.
Apple provides a clear indication when installing software from third party sources on the Internet. Apple requires an administrator password when installing software unless the software is signed and installed from the Mac App Store although the Mac App Store requires the Apple iTunes username and password to purchase software.
Java Runtime (OpenJDK Project for Java on Mac OS X updates available from Oracle) and Adobe Flash (updates available from Adobe) are no longer bundled applications beginning with Mac OS X 10.7 Lion. The removal of Adobe Flash and Java Runtime remove a large number of potential exploits.
Application Sandboxing (Safari, for example, has now been divided into two processes that separate the browser's user interface and other functions from the part that parses JavaScript, images, and other web content) prevents applications from executing code in other applications.
Apple maintains a non-published list of possibly fraudulent websites which may optionally be used for warning users when visiting such websites. Apple Safari provides an option to block all website cookies, allow cookies only from visited websites or allow all cookies. Beginning with OS X 10.8 Mountain Lion, Safari provides an option to deny website from accessing location services, prompting once each day or prompting once only. Apple Safari provides a "Do Not Track" option for compliant websites. Further privacy and security features and functions are provided via third party Safari extensions.
Apple Keychain allows users to save passwords and textual data encrypted in protected keychains. Apple Safari allows users to save usernames and passwords to visited websites.
For applications that a user may download from an unknown source Apple OS X 10.7 Lion offers file quarantine with malware detection to prevent code execution and determine if the file is a known threat.
In order to avoid the potential for users accidentally downloading and installing malicious software Apple introduced the Mac App Store in Mac OS X 10.7 Lion to provide a curated application (cursory review) purchasing experience with signed code. Apple extends the Mac App Store in OS X 10.8 Mountain Lion by introducing Gatekeeper which is an option to prevent installation of apps not from the Mac App Store and non-signed code.
In the unlikely event that an application is able to execute malicious code, Apple provides Address Space Layout Randomization (ASLR) including heap, stack, and dynamic linker which randomly arranges the positions of key data areas by obscuring memory addresses. Address Space Layout Randomization is valuable because attempting to inject code into an incorrect memory address will cause errors in the malicious code.
Apple OS X 10.7 Lion provides disk encryption for the entire disk (rather than only users' home folders) at the block level using XTS-AES 128 encryption. Encryption of external USB and FireWire drives is supported. Apple enables the administrator to designate a number of user accounts authorized to decrypt the system disk. A recovery key as well as Instant Wipe which removes the encryption key from your Mac instantaneously, making the data completely inaccessible are provided. Once the encryption key is erased, the Mac performs an entire wipe of the data from the disk.
If all else fails, Apple provides a Recovery Partition which was introduced in Mac OS X 10.7 Lion to allow users to easily restore their computer. Apple Time Machine provides an intuitive user interface for backup so users can restore corrupted data from a storage device. Apple Time Capsule integrates with Time Machine very well although third party solutions are also supported.
Apple provides a Secure Guest Account (an account that the system erases and resets at logout) for allowance of temporary use by authorized persons.
Apple OS X 10.8 Mountain Lion introduces Application level Privacy settings including Location Services to avoid unauthorized disclosure of personal information to legitimate applications which may not require invasive disclosure of personal information.
Here is the list of Windows 7 updates this year through early May 2012:
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2584146) 01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2585542) 01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2631813) 01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2644615) 01/10/2012 Update for Windows 7 for x64-based Systems (KB2632503) 01/17/2012 Windows Internet Explorer 9 for Windows 7 for x64-based Systems (KB982861) 02/14/2012 Security Update for Windows 7 for x64-based Systems (KB2645640) 02/14/2012 Security Update for Windows 7 for x64-based Systems (KB2654428) 02/14/2012 Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2600217) 02/14/2012 Update for Windows 7 for x64-based Systems (KB2640148) 02/14/2012 Update for Windows 7 for x64-based Systems (KB2660075) 03/13/2012 Security Update for Windows 7 for x64-based Systems (KB2621440) 03/13/2012 Security Update for Windows 7 for x64-based Systems (KB2667402) 04/10/2012 Cumulative Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB2675157) 04/10/2012 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2675157) 04/10/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2656373) 04/10/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656368) 04/10/2012 Security Update for Windows 7 for x64-based Systems (KB2653956) 04/10/2012 Update for Windows 7 for x64-based Systems (KB2679255) 05/08/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2604115) 05/08/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2656411) 05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2604121) 05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656351) 05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656405) 05/08/2012 Security Update for Microsoft Silverlight (KB2636927) 05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2658846) 05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2659262) 05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2660649) 05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2676562) 05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2688338) 05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2690533) 05/08/2012 Update Rollup for ActiveX Killbits for Windows 7 for x64-based Systems (KB2695962) 05/08/2012 Windows Malicious Software Removal Tool x64 - May 2012 (KB890830) 02/14/2012 Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition 04/10/2012 Security Update for Microsoft Office 2010 (KB2598039) 32-Bit Edition 04/10/2012 Update for Microsoft Office 2010 (KB2202188) 32-Bit Edition 04/10/2012 Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition 04/10/2012 Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition 04/10/2012 Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition 05/08/2012 Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition 05/08/2012 Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition 05/08/2012 Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition 05/08/2012 Security Update for Microsoft Visio Viewer 2010 (KB2597981) 32-Bit Edition 05/08/2012 Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
“It's a significant improvement, and the best way that I've described the level of security in Lion is that it's Windows 7, plus, plus,” said Dino Dai Zovi, principal of security consultancy Trail of Bits and the coauthor of The Mac Hacker's Handbook. “I generally tell Mac users that if they care about security, they should upgrade to Lion sooner rather than later, and the same goes for Windows users, too.”
“When they went from Leopard to Snow Leopard, as far as I'm concerned, there really wasn't any change,” said Charlie Miller, principal research consultant at security firm Accuvant and the other coauthor of The Mac Hacker's Handbook. “They might have said there was more security and it was better, but at a low functionality level there really wasn't any difference. Now, they've made significant changes and it's going to be harder to exploit.”
“Now, you end up inside this restricted process that only does the web parsing, and you can't do other things you might want to do as an attacker, such as write files or read a person's documents,” Miller explained. “Even when you get code execution, you no longer have free rein to do whatever you want. You can do only what the sandbox allows you to do.”
I would like to say congratulations Zero Day Initiative's Pwn2Own 2012 winners; VUPEN for placing first by demonstrating two 0 day vulnerabilities; one for Internet Explorer and one for Chrome. as well as Vincenzo Iozzo and Willem Pinckaers for demonstrating a Firefox 0 day.
“It's a significant improvement, and the best way that I've described the level of security in Lion is that it's Windows 7, plus, plus,” said Dino Dai Zovi, principal of security consultancy Trail of Bits and the coauthor of The Mac Hacker's Handbook. “I generally tell Mac users that if they care about security, they should upgrade to Lion sooner rather than later, and the same goes for Windows users, too.”
“When they went from Leopard to Snow Leopard, as far as I'm concerned, there really wasn't any change,” said Charlie Miller, principal research consultant at security firm Accuvant and the other coauthor of The Mac Hacker's Handbook. “They might have said there was more security and it was better, but at a low functionality level there really wasn't any difference. Now, they've made significant changes and it's going to be harder to exploit.”
“Now, you end up inside this restricted process that only does the web parsing, and you can't do other things you might want to do as an attacker, such as write files or read a person's documents,” Miller explained. “Even when you get code execution, you no longer have free rein to do whatever you want. You can do only what the sandbox allows you to do.”
I would like to say congratulations Zero Day Initiative's Pwn2Own 2012 winners; VUPEN for placing first by demonstrating two 0 day vulnerabilities; one for Internet Explorer and one for Chrome. as well as Vincenzo Iozzo and Willem Pinckaers for demonstrating a Firefox 0 day.
OK, that's a year older than my link, and of course predates all the excitement of late, but yes, food for thought.
So, unless something else silly comes up, adieu until Apple doubles its share!
For reference you mean OS X, correct? So that'd be when Apple has 30% marketshare in the US and 12% worldwide, right?
Actually, in the post-pc world (us being the the pre-post-pc world currently) you'd probably have to include iPhones and iPads as well, and with the tablet market actually just being an iPad market it could be quite interesting to see what happens with those percentages.
Should we also include most of Samsung's hardware and all Android devices as well, seeing as they originated with Apple? How about the 'Inspired by Apple Intel' ultrabook market?
Nah, let's give them a fighting chance.
Samsung Hardware: The only virus Apple needs to keep an eye out for.
Anyway, perhaps we should all have a reunion when Apple's desktop share has doubled. I'll bookmark the thread.
Bookmark away. Bottom line is Windows is losing advocates and Mac is gaining them. Whether those advocates are of the IT professional domain or not is debatable but Windows is in decline and Mac is on the increase. Spin it however you like but Windows has become too expensive and UNIX is the new vanilla generic default. Mac fits right into that new paradigm. Windows is a pain in th ass but I'm only dealing with server 2008 so perhaps they will solve all the useability issues with the next version however after using Windows server since 3.51 somehow I doubt it.
Since there are no intelligent responses countering my comments, I assume those who were defending the garbage that is Microsoft Windows have finished.
Actually, in the post-pc world (us being the the pre-post-pc world currently) you'd probably have to include iPhones and iPads as well, and with the tablet market actually just being an iPad market it could be quite interesting to see what happens with those percentages.
Should we also include most of Samsung's hardware and all Android devices as well, seeing as they originated with Apple? How about the 'Inspired by Apple Intel' ultrabook market?
Nah, let's give them a fighting chance.
Samsung Hardware: The only virus Apple needs to keep an eye out for.
Actually, considering iOS and OS X have a common core we should include discussions of iOS security. Since one of the arguments from ignorance regards market share, we should discuss the applicable market share which is both iOS and OS X.
Excellent - they're on the ball! Honestly, Apple will need to be this proactive.
So Apple issues a security update, which they've done for as many years as I can recall, they are off the ball, but when MS issues a security update it means they are on the ball. Got it! Conclusion: no one should continue responding to you because you refuse to even try to be objective or rational.
So Apple issues a security update, which they've done for as many years as I can recall, they are off the ball, but when MS issues a security update it means they are on the ball. Got it! Conclusion: no one should continue responding to you because you refuse to even try to be objective or rational.
Aside from said person not reading my posts which clearly indicate that (although Apple has rarely needed the ability to push security updates daily) they have the capability to push security updates daily. As most of us know, there is a vast difference between having the ability to push security updates every day and needing to push security updates every day.
Apple Insider needs to do something about the recent rash of troublemakers or they will start losing their audience. Probably good business to remove some of the abusers as, given their attitude despite what they might say, they almost certainly don't buy Apple products (from Apple Insider).
Since there are no intelligent responses countering my comments, I assume those who were defending the garbage that is Microsoft Windows have finished.
Actually, considering iOS and OS X have a common core we should include discussions of iOS security. Since one of the arguments from ignorance regards market share, we should discuss the applicable market share which is both iOS and OS X.
Ho hum - I'll be back in a year, maybe you'll have woken up by then. Once you do, read the link I posted, it'll still be more current than what you presented.
And yes, perhaps troublemakers such as yourself should re-read their posts! SO angry!
Comments
Quote:
Originally Posted by kustardking
haha - right, sorry, but there were some replies.Here's another.
I was a PC user, and professional supported it, for approximately thirteen years.
During that period of time, I reinstalled Windows both for myself, and many others, hundreds of time due to general Windows instabilities, viruses, etc...
Hundreds.
Since converting to MAC OS X about two years ago I have done a single install of an operating system
One.
From Snow Leopard to Lion.
During that time, my MBA has sometimes remained on for months at a time, going to sleep only when required, and it's been nice having a system that screams along without having to blow CPU cycles dragging bloated anti-virus software along with it.
My experience is not one of the minority.
Mind if we file your advice in the circular storage cabinet?
Quote:
Originally Posted by JerrySwitched26
Say what?
He said someone set us up the bomb.
Here's another.
I was a PC user, and professional supported it, for approximately thirteen years.
During that period of time, I reinstalled Windows both for myself, and many others, hundreds of time due to general Windows instabilities, viruses, etc...
Hundreds.
Since converting to MAC OS X about two years ago I have done a single install of an operating system
One.
From Snow Leopard to Lion.
During that time, my MBA has sometimes remained on for months at a time, going to sleep only when required, and it's been nice having a system that screams along without having to blow CPU cycles dragging bloated anti-virus software along with it.
My experience is not one of the minority.
Mind if we file your advice in the circular storage cabinet?
Not necessary, this is digital.
In my 20 years of using computers for work, I cursed Windows up through and including XP. I started using WIndows 7 about two years ago and have not had a fault since. I have had ONE blue screen, and that was when I knocked a card out of its slot. Also, no viruses, but perhaps that's because I'm careful.
Whereas OS X is far more coherent in visual presentation than Windows 7, is it far less stable and far less consistent in behavior. Don't take my word for it, look at the list of OS patch crashes I listed, and that's just what I remember off the top of my head. Maybe *you* didn't have those crashes, but LOTS of other people did. Apple has a very narrow band of hardware to support, it is ridiculous that those things happen. If you want to make excuses for Apple, then the balance of it is that in the two years I was using Windows 7, not one patch caused any trouble.
Anyway, perhaps we should all have a reunion when Apple's desktop share has doubled. I'll bookmark the thread.
For reference you mean OS X, correct? So that'd be when Apple has 30% marketshare in the US and 12% worldwide, right?
Apple offers a Software Update control panel within the Mac App Store for automatic download and installation of Apple system software updates.
Apple provides a clear indication when installing software from third party sources on the Internet. Apple requires an administrator password when installing software unless the software is signed and installed from the Mac App Store although the Mac App Store requires the Apple iTunes username and password to purchase software.
Java Runtime (OpenJDK Project for Java on Mac OS X updates available from Oracle) and Adobe Flash (updates available from Adobe) are no longer bundled applications beginning with Mac OS X 10.7 Lion. The removal of Adobe Flash and Java Runtime remove a large number of potential exploits.
Application Sandboxing (Safari, for example, has now been divided into two processes that separate the browser's user interface and other functions from the part that parses JavaScript, images, and other web content) prevents applications from executing code in other applications.
Apple maintains a non-published list of possibly fraudulent websites which may optionally be used for warning users when visiting such websites. Apple Safari provides an option to block all website cookies, allow cookies only from visited websites or allow all cookies. Beginning with OS X 10.8 Mountain Lion, Safari provides an option to deny website from accessing location services, prompting once each day or prompting once only. Apple Safari provides a "Do Not Track" option for compliant websites. Further privacy and security features and functions are provided via third party Safari extensions.
Apple Keychain allows users to save passwords and textual data encrypted in protected keychains. Apple Safari allows users to save usernames and passwords to visited websites.
For applications that a user may download from an unknown source Apple OS X 10.7 Lion offers file quarantine with malware detection to prevent code execution and determine if the file is a known threat.
In order to avoid the potential for users accidentally downloading and installing malicious software Apple introduced the Mac App Store in Mac OS X 10.7 Lion to provide a curated application (cursory review) purchasing experience with signed code. Apple extends the Mac App Store in OS X 10.8 Mountain Lion by introducing Gatekeeper which is an option to prevent installation of apps not from the Mac App Store and non-signed code.
In the unlikely event that an application is able to execute malicious code, Apple provides Address Space Layout Randomization (ASLR) including heap, stack, and dynamic linker which randomly arranges the positions of key data areas by obscuring memory addresses. Address Space Layout Randomization is valuable because attempting to inject code into an incorrect memory address will cause errors in the malicious code.
Apple OS X 10.7 Lion provides disk encryption for the entire disk (rather than only users' home folders) at the block level using XTS-AES 128 encryption. Encryption of external USB and FireWire drives is supported. Apple enables the administrator to designate a number of user accounts authorized to decrypt the system disk. A recovery key as well as Instant Wipe which removes the encryption key from your Mac instantaneously, making the data completely inaccessible are provided. Once the encryption key is erased, the Mac performs an entire wipe of the data from the disk.
If all else fails, Apple provides a Recovery Partition which was introduced in Mac OS X 10.7 Lion to allow users to easily restore their computer. Apple Time Machine provides an intuitive user interface for backup so users can restore corrupted data from a storage device. Apple Time Capsule integrates with Time Machine very well although third party solutions are also supported.
Apple provides a Secure Guest Account (an account that the system erases and resets at logout) for allowance of temporary use by authorized persons.
Apple OS X 10.8 Mountain Lion introduces Application level Privacy settings including Location Services to avoid unauthorized disclosure of personal information to legitimate applications which may not require invasive disclosure of personal information.
Apple provides extremely robust Parental Controls, allowing parents to; limit usage per day, limit which hours used per day, limit websites, limit applications and more.
For reference you mean OS X, correct? So that'd be when Apple has 30% marketshare in the US and 12% worldwide, right?
Sure, let's call it a date. Maybe tempers will have cooled and we can raise a beer to best-of-class.Here are the facts regarding Apple OS X security and privacy. Apple OS X 10.7 Lion is the most secure commercial operating system is widespread use.
Apple offers a Software Update control panel within the Mac App Store for automatic download and installation of Apple system software updates.
Apple provides a clear indication when installing software from third party sources on the Internet. Apple requires an administrator password when installing software unless the software is signed and installed from the Mac App Store although the Mac App Store requires the Apple iTunes username and password to purchase software.
Java Runtime (OpenJDK Project for Java on Mac OS X updates available from Oracle) and Adobe Flash (updates available from Adobe) are no longer bundled applications beginning with Mac OS X 10.7 Lion. The removal of Adobe Flash and Java Runtime remove a large number of potential exploits.
Application Sandboxing (Safari, for example, has now been divided into two processes that separate the browser's user interface and other functions from the part that parses JavaScript, images, and other web content) prevents applications from executing code in other applications.
Apple maintains a non-published list of possibly fraudulent websites which may optionally be used for warning users when visiting such websites. Apple Safari provides an option to block all website cookies, allow cookies only from visited websites or allow all cookies. Beginning with OS X 10.8 Mountain Lion, Safari provides an option to deny website from accessing location services, prompting once each day or prompting once only. Apple Safari provides a "Do Not Track" option for compliant websites. Further privacy and security features and functions are provided via third party Safari extensions.
Apple Keychain allows users to save passwords and textual data encrypted in protected keychains. Apple Safari allows users to save usernames and passwords to visited websites.
For applications that a user may download from an unknown source Apple OS X 10.7 Lion offers file quarantine with malware detection to prevent code execution and determine if the file is a known threat.
In order to avoid the potential for users accidentally downloading and installing malicious software Apple introduced the Mac App Store in Mac OS X 10.7 Lion to provide a curated application (cursory review) purchasing experience with signed code. Apple extends the Mac App Store in OS X 10.8 Mountain Lion by introducing Gatekeeper which is an option to prevent installation of apps not from the Mac App Store and non-signed code.
In the unlikely event that an application is able to execute malicious code, Apple provides Address Space Layout Randomization (ASLR) including heap, stack, and dynamic linker which randomly arranges the positions of key data areas by obscuring memory addresses. Address Space Layout Randomization is valuable because attempting to inject code into an incorrect memory address will cause errors in the malicious code.
Apple OS X 10.7 Lion provides disk encryption for the entire disk (rather than only users' home folders) at the block level using XTS-AES 128 encryption. Encryption of external USB and FireWire drives is supported. Apple enables the administrator to designate a number of user accounts authorized to decrypt the system disk. A recovery key as well as Instant Wipe which removes the encryption key from your Mac instantaneously, making the data completely inaccessible are provided. Once the encryption key is erased, the Mac performs an entire wipe of the data from the disk.
If all else fails, Apple provides a Recovery Partition which was introduced in Mac OS X 10.7 Lion to allow users to easily restore their computer. Apple Time Machine provides an intuitive user interface for backup so users can restore corrupted data from a storage device. Apple Time Capsule integrates with Time Machine very well although third party solutions are also supported.
Apple provides a Secure Guest Account (an account that the system erases and resets at logout) for allowance of temporary use by authorized persons.
Apple OS X 10.8 Mountain Lion introduces Application level Privacy settings including Location Services to avoid unauthorized disclosure of personal information to legitimate applications which may not require invasive disclosure of personal information.
Give this a read:http://eugene.kaspersky.com/2012/05/31/when-will-apple-get-security-religion/
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2584146)
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2585542)
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2631813)
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2644615)
01/10/2012 Update for Windows 7 for x64-based Systems (KB2632503)
01/17/2012 Windows Internet Explorer 9 for Windows 7 for x64-based Systems (KB982861)
02/14/2012 Security Update for Windows 7 for x64-based Systems (KB2645640)
02/14/2012 Security Update for Windows 7 for x64-based Systems (KB2654428)
02/14/2012 Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2600217)
02/14/2012 Update for Windows 7 for x64-based Systems (KB2640148)
02/14/2012 Update for Windows 7 for x64-based Systems (KB2660075)
03/13/2012 Security Update for Windows 7 for x64-based Systems (KB2621440)
03/13/2012 Security Update for Windows 7 for x64-based Systems (KB2667402)
04/10/2012 Cumulative Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB2675157)
04/10/2012 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2675157)
04/10/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2656373)
04/10/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656368)
04/10/2012 Security Update for Windows 7 for x64-based Systems (KB2653956)
04/10/2012 Update for Windows 7 for x64-based Systems (KB2679255)
05/08/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2604115)
05/08/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2656411)
05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2604121)
05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656351)
05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656405)
05/08/2012 Security Update for Microsoft Silverlight (KB2636927)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2658846)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2659262)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2660649)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2676562)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2688338)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2690533)
05/08/2012 Update Rollup for ActiveX Killbits for Windows 7 for x64-based Systems (KB2695962)
05/08/2012 Windows Malicious Software Removal Tool x64 - May 2012 (KB890830)
02/14/2012 Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
04/10/2012 Security Update for Microsoft Office 2010 (KB2598039) 32-Bit Edition
04/10/2012 Update for Microsoft Office 2010 (KB2202188) 32-Bit Edition
04/10/2012 Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
04/10/2012 Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
04/10/2012 Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
05/08/2012 Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
05/08/2012 Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition
05/08/2012 Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition
05/08/2012 Security Update for Microsoft Visio Viewer 2010 (KB2597981) 32-Bit Edition
05/08/2012 Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Seems secure to me. Oh, wait ...
Here is the list of Windows 7 updates this year through early May 2012:
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2584146)
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2585542)
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2631813)
01/10/2012 Security Update for Windows 7 for x64-based Systems (KB2644615)
01/10/2012 Update for Windows 7 for x64-based Systems (KB2632503)
01/17/2012 Windows Internet Explorer 9 for Windows 7 for x64-based Systems (KB982861)
02/14/2012 Security Update for Windows 7 for x64-based Systems (KB2645640)
02/14/2012 Security Update for Windows 7 for x64-based Systems (KB2654428)
02/14/2012 Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2600217)
02/14/2012 Update for Windows 7 for x64-based Systems (KB2640148)
02/14/2012 Update for Windows 7 for x64-based Systems (KB2660075)
03/13/2012 Security Update for Windows 7 for x64-based Systems (KB2621440)
03/13/2012 Security Update for Windows 7 for x64-based Systems (KB2667402)
04/10/2012 Cumulative Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB2675157)
04/10/2012 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2675157)
04/10/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2656373)
04/10/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656368)
04/10/2012 Security Update for Windows 7 for x64-based Systems (KB2653956)
04/10/2012 Update for Windows 7 for x64-based Systems (KB2679255)
05/08/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2604115)
05/08/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems (KB2656411)
05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2604121)
05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656351)
05/08/2012 Security Update for Microsoft .NET Framework 4 on Windows 7 for x64-based Systems (KB2656405)
05/08/2012 Security Update for Microsoft Silverlight (KB2636927)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2658846)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2659262)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2660649)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2676562)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2688338)
05/08/2012 Security Update for Windows 7 for x64-based Systems (KB2690533)
05/08/2012 Update Rollup for ActiveX Killbits for Windows 7 for x64-based Systems (KB2695962)
05/08/2012 Windows Malicious Software Removal Tool x64 - May 2012 (KB890830)
02/14/2012 Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
04/10/2012 Security Update for Microsoft Office 2010 (KB2598039) 32-Bit Edition
04/10/2012 Update for Microsoft Office 2010 (KB2202188) 32-Bit Edition
04/10/2012 Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
04/10/2012 Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
04/10/2012 Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
05/08/2012 Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
05/08/2012 Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition
05/08/2012 Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition
05/08/2012 Security Update for Microsoft Visio Viewer 2010 (KB2597981) 32-Bit Edition
05/08/2012 Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Excellent - they're on the ball! Honestly, Apple will need to be this proactive.“It's a significant improvement, and the best way that I've described the level of security in Lion is that it's Windows 7, plus, plus,” said Dino Dai Zovi, principal of security consultancy Trail of Bits and the coauthor of The Mac Hacker's Handbook. “I generally tell Mac users that if they care about security, they should upgrade to Lion sooner rather than later, and the same goes for Windows users, too.”
“When they went from Leopard to Snow Leopard, as far as I'm concerned, there really wasn't any change,” said Charlie Miller, principal research consultant at security firm Accuvant and the other coauthor of The Mac Hacker's Handbook. “They might have said there was more security and it was better, but at a low functionality level there really wasn't any difference. Now, they've made significant changes and it's going to be harder to exploit.”
“Now, you end up inside this restricted process that only does the web parsing, and you can't do other things you might want to do as an attacker, such as write files or read a person's documents,” Miller explained. “Even when you get code execution, you no longer have free rein to do whatever you want. You can do only what the sandbox allows you to do.”
Dan Goodin. Published 21 July 2011. [URL=http://www.theregister.co.uk/2011/07/21/mac_os_x_lion_security/][B][I]Major overhaul makes OS X Lion king of security Windows 7, Ubuntu meet their match[/I][/B][/URL]. [I]The Register[/I]. Retrieved 25 June, 2012.
I would like to say congratulations Zero Day Initiative's Pwn2Own 2012 winners; VUPEN for placing first by demonstrating two 0 day vulnerabilities; one for Internet Explorer and one for Chrome. as well as Vincenzo Iozzo and Willem Pinckaers for demonstrating a Firefox 0 day.
For further contemplation:
“It's a significant improvement, and the best way that I've described the level of security in Lion is that it's Windows 7, plus, plus,” said Dino Dai Zovi, principal of security consultancy Trail of Bits and the coauthor of The Mac Hacker's Handbook. “I generally tell Mac users that if they care about security, they should upgrade to Lion sooner rather than later, and the same goes for Windows users, too.”
“When they went from Leopard to Snow Leopard, as far as I'm concerned, there really wasn't any change,” said Charlie Miller, principal research consultant at security firm Accuvant and the other coauthor of The Mac Hacker's Handbook. “They might have said there was more security and it was better, but at a low functionality level there really wasn't any difference. Now, they've made significant changes and it's going to be harder to exploit.”
“Now, you end up inside this restricted process that only does the web parsing, and you can't do other things you might want to do as an attacker, such as write files or read a person's documents,” Miller explained. “Even when you get code execution, you no longer have free rein to do whatever you want. You can do only what the sandbox allows you to do.”
Dan Goodin. Published 21 July 2011. Major overhaul makes OS X Lion king of security Windows 7, Ubuntu meet their match. The Register. Retrieved 25 June, 2012.
I would like to say congratulations Zero Day Initiative's Pwn2Own 2012 winners; VUPEN for placing first by demonstrating two 0 day vulnerabilities; one for Internet Explorer and one for Chrome. as well as Vincenzo Iozzo and Willem Pinckaers for demonstrating a Firefox 0 day.
OK, that's a year older than my link, and of course predates all the excitement of late, but yes, food for thought.So, unless something else silly comes up, adieu until Apple doubles its share!
Ever noticed that Apple gets along better than Windows with fewer updates?
Ever stop and think there might be a reason for that?
I'll give you a hint: it rhymes with Munich's Barkitecture.
Quote:
Originally Posted by Tallest Skil
For reference you mean OS X, correct? So that'd be when Apple has 30% marketshare in the US and 12% worldwide, right?
Actually, in the post-pc world (us being the the pre-post-pc world currently) you'd probably have to include iPhones and iPads as well, and with the tablet market actually just being an iPad market it could be quite interesting to see what happens with those percentages.
Should we also include most of Samsung's hardware and all Android devices as well, seeing as they originated with Apple? How about the 'Inspired by Apple Intel' ultrabook market?
Nah, let's give them a fighting chance.
Samsung Hardware: The only virus Apple needs to keep an eye out for.
Bookmark away. Bottom line is Windows is losing advocates and Mac is gaining them. Whether those advocates are of the IT professional domain or not is debatable but Windows is in decline and Mac is on the increase. Spin it however you like but Windows has become too expensive and UNIX is the new vanilla generic default. Mac fits right into that new paradigm. Windows is a pain in th ass but I'm only dealing with server 2008 so perhaps they will solve all the useability issues with the next version however after using Windows server since 3.51 somehow I doubt it.
Actually, considering iOS and OS X have a common core we should include discussions of iOS security. Since one of the arguments from ignorance regards market share, we should discuss the applicable market share which is both iOS and OS X.
So Apple issues a security update, which they've done for as many years as I can recall, they are off the ball, but when MS issues a security update it means they are on the ball. Got it! Conclusion: no one should continue responding to you because you refuse to even try to be objective or rational.
Aside from said person not reading my posts which clearly indicate that (although Apple has rarely needed the ability to push security updates daily) they have the capability to push security updates daily. As most of us know, there is a vast difference between having the ability to push security updates every day and needing to push security updates every day.
Since there are no intelligent responses countering my comments, I assume those who were defending the garbage that is Microsoft Windows have finished.
Actually, considering iOS and OS X have a common core we should include discussions of iOS security. Since one of the arguments from ignorance regards market share, we should discuss the applicable market share which is both iOS and OS X.
Ho hum - I'll be back in a year, maybe you'll have woken up by then. Once you do, read the link I posted, it'll still be more current than what you presented.And yes, perhaps troublemakers such as yourself should re-read their posts! SO angry!
Oh, well ... "Think of how stupid the average person is, and realize half of them are stupider than that" - George Carlin