Apple Pushing Its Luck?
Does anyone think Jobs and Apple is pushing its luck with making advertisements about how we have no viruses (even though there's like 8 for mac...but all kinda not prevalent) and no spyware. Isn't just a matter of time before some avid believer in PCs and Windows writes his own malware just to shut up Apple and apple users? I could just be paranoid about it. And I threw it in here because this does relate to the OS.
Comments
sn't just a matter of time before some avid believer in PCs and Windows writes his own malware just to shut up Apple and apple users?
Who says they haven't tried?
This whole question of macintosh security has been argued up and down. The main gist of the issue is that because OSX was written with security in mind (instead of added later in the case of Windows), it's going to:
A) Limit the number of successful attacks
Limit the severity of said attacks.
However, I do foresee some sort of serious malware for the mac, purely because nature abhors a vacuum. I'm not holding my breath though.
Is the os invincible? Nope.
But it'll be a long time before it can get anywere near the level of Windows OS.
1:
Many of the exploits on windows (including spyware) are specific to windows. It will take a radically different thinking to put it on OSX.
2:
Add to that the diffculty to infect another computer from the first.
There's just currently no easy way to throw the OSX userbase into ruins, so Apple can speak as much trash as it can till one of the two changes.
Before anyone says Security fixes themselves prove otherwise, the stuff there are high level. It's a far far far cry from casual level expliot needed. Infact half of them don't even matter, since most people leave OSX in default state(ports closed), and those patches don't really effect it anyway.
Trying to take down a fortress with a small band of troops is improbable, but not impossible.
Currently there just isn't the easiness vs profit of doing it.
Unless one of the two changes, they can talk more trash. Either it gets more easier or gets more profitable to.
2: Add to that the diffculty to infect another computer from the first.
There's just currently no easy way to throw the OSX userbase into ruins, so Apple can speak as much trash as it can till one of the two changes.
Didnt the one kind of popular virus send it self through your iChat buddy list?
dont c how it can be that hard to create a mac virus... Just write a program that does something that the user probably doesn't want it to do.
Well i think normally the idea is that while it does something the user doesnt want it to do it should also have other parts to it, like keeping it hidden or how and where it copies itself. Otherwise its just an annoying comand line or something. Something that can just be thrown away.
Does anyone think Jobs and Apple is pushing its luck with making advertisements about how we have no viruses (even though there's like 8 for mac...but all kinda not prevalent) and no spyware. Isn't just a matter of time before some avid believer in PCs and Windows writes his own malware just to shut up Apple and apple users? I could just be paranoid about it. And I threw it in here because this does relate to the OS.
I agree with you. Mac OS X is not invulnerable. There have been plenty of security advisories for it, but none of them seem to materialize into actual threats. A big part of the reason is that the Mac user model is more secure than Windows'. Windows XP has a very poor privilege escalation model, which means that most users have to run with more privileges than they need just to run normal software. This makes it much easier to exploit Windows... you're already running as "root" (not quite, but almost), so you just need to find an arbitrary code exploit. On a Mac, you have to finagle a way to get root first and then use the arbitrary code exploit. It makes it harder, and Apple has every right to tout it in their commercials.
I do worry that eventually someone will take it as a challenge. The recently reported Wi-fi exploit proves that some people are already starting to see it as one.
It's just orders of magnitude harder to exploit than Winders is, due to its design.
And yet constantly, people are saying "Mac OS X is not invulnerable." Who said that it was?
When they say they don't have to worry, it's a true statement. They aren't offering an opinion one way or another on whether Mac OS X is "100% invulnerable". That is a hallucination of the listener.
Precisely. I don't worry, because nothing prevalent exists at this point in time. No one running OS X has to worry. That's the point. No one ever said, I'll never, 'till the end of time, have to worry about viruses on a Mac. At least, however, no one I've ever spoken to.
well seeing as everyone can agree that malware for macs is inevitable, ...
No, not everyone agrees that malware is inevitable. Most will agree that it is possible, but that is a very different animal. Malware is not created by magic. Neither is it created by random chance. In order to develop malware on MacOS X, one of two things must happen. One--some malware developer most exploit a previously unknown vulnerability in MacOS X before Apple can fix it. Two--Apple must become a lot sloppier in its software design and create new vulnerabilities that can be exploited for ill.
I do worry that eventually someone will take it as a challenge. The recently reported Wi-fi exploit proves that some people are already starting to see it as one.
That was full of trash BS. When under the microscope, that hack was the equvilant of smoke and mirror slash-media journalism.
http://daringfireball.net/2006/08/curious_case
Basically, thet were using 3rd party usb-wireless with a 3rd party driver(probably custom made driver!), with a hint of slight of hand(bash command) which sugges not only was it not a real hack, but a phony one as well.
Also a lot of eye dodging when ask to prove it. Like :"Apple leaned on us if you get the hint"
Bascially, they failed miserably to attack apple, as not only that they can't hack it, but faked it in public.
The ichat buddy list was a proof of concept which may or may not have work. Probably not though, as the settings in ichat had to be made to accept automatically which may or may not be on computers.
It's easy to make headlines on a mac, but they all come out duds. Oh the other hand windows all seems to be worse then the headlines.
So apple talks trash to take advantage of it.
1) Less need to support legacy software means Apple can fix things easier. Additionally, there are fewer APIs, and they've all been vetted or written a lot more recently than some of the legacy Windows APIs
2) The user system helps a lot. It makes social engineering harder (but not impossible), and it limits what a virus can do without getting re-authorized every 5-10 minutes.
3) Lack of really dumb "features" like ActiveX or closer browser/Office tie-in to the OS.