Posted on 12/06/2008 4:39:18 PM PST by Swordmaker
SAN FRANCISCO Internet security is broken, and nobody seems to know quite how to fix it.
Despite the efforts of the computer security industry and a half-decade struggle by Microsoft to protect its Windows operating system, malicious software is spreading faster than ever. The so-called malware surreptitiously takes over a PC and then uses that computer to spread more malware to other machines exponentially. Computer scientists and security researchers acknowledge they cannot get ahead of the onslaught.
(Excerpt) Read more at nytimes.com ...
If you want on or off the Mac Ping List, Freepmail me.
Guess you haven’t seen all the patches released by mac recently. The weak spot in any OS is the user. Get the user to click on a link or download a file and you can do anything the user can do.
bmp
Linux is the answer.
The key in Unix/Linux systems is that the user can’t do anything to the system - only root can. You want configure your system, you su to root.
My little $300 Asus Eee with Linux is a grrrrreat answer to all that stuff out there...but still you cant just download anything and or go to a link...”www” stands for Wild Wild West.
“The key in Unix/Linux systems is that the user cant do anything to the system - only root can. “
If I had 5 cents for every time some mac user was offended by the unix comparison I’d be rich.
The security of Macs will be severely tested in the next year. Many users give themselves root level access instead of running a more limited account.
Malicious Images Help Attackers Hack OS X
Severity: High
15 September, 2008
Summary:
These vulnerabilities affect: OS X 10.4.x (Tiger) and OS X 10.5.x (Leopard), both client and server versions
How an attacker exploits them: Multiple vectors of attack, including enticing one of your users into downloading and viewing malicious images, documents, or email
Impact: Various results; in the worst case, attacker executes code on your user’s computer, potentially gaining full control of it
What to do: OS X administrators should download, test and install Security Update 2008-006 or the OS X 10.5.5 update
Yeah a 99% user base are all wrong.
If they can’t find something to steal on your PC they will use it to store stolen data and/or as a platform to commit more crimes.
Linux works for me too. Amazing how something so stable ,so secure (and free) is still just a fraction of desktops.
Your point is important, driftdiver. That’s one of the things that makes the Mac OS so good security-wise. Nothing (to my knowledge) can modify your root directory without first asking for you to enter your administrative password. Users should think twice before allowing any third-party software to access root.
BTW, I’m kind of down on Mac OS for other issues, despite being a long-time Mac fan. In the security arena, I’ve never had a problem with it, but Apple Corp. doesn’t seem to have any concern whatsoever for anyone who likes to game on occasion. In fact, their OS updates keep breaking what few games actually run on Mac. With Firefox and iTunes available for Windows, I’m running out of reasons to stick with Apple 8(
Well, that may be - but just so long as my prompt is $ and not #, I know what I type in can’t hurt my system.
The whole point of Unix systems is that a non-root user can install and run most software in his own account. You only need to write a script to set the proper $PATH, $LD_LIBRARY_PATH, and whatever other env variables you need.
Webservers run as ‘nobody’ and have no privileges, and so can nearly every other piece of software.
OSX is based on unix.
“OSX is based on unix.”
Blasphemer!!!!!!!!!!!!
Yes of course, but many mac fans refuse to accept that.
It may be hubris...but I keep a very tight rein on my PCs.
Give it your best shot script kiddies. I'm sitting here waiting for your best shot.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.