Mac Users - Apple has been my weapon of choice since 1985. I now work on all manner of network devices, firewalls and servers and my PBG4 12" is VERY useful in that job. It's what we play on at home and I run some security services on an Xserve.

I've been of the opinion long before I read it here that the move to Intel will allow more low level prodding of the architecture; this will generate more exploits.

Apple is good on security updates, but not as responsive as they should be, and not as responsive as MS on security matters (after years of getting beat up they are putting in a lot of resources, and it shows). Example? You folks that have Tiger Server have a vulnerable version of ClamAV installed (2/8/06). After some weeks Apple patched one remote code execution vulnerability a few days before the next one came out. Take a look on their support boards and see if you want to try to compile/install the patched version yourself. SANS Top 20 takes a ridiculous approach to criticising Apple's approach (and many SANS researchers use Mac) but it doesn't mean they shouldn't be criticised.

So, don't get your back up when people critique Mac security, especially a reasonable article like this one, instead, ask yourself:

1. When was your last backup?

2. Is your firewall on, with only necessary access?

3. Is your software updated?

4. Do you use a non-admin user for your daily work?

5. Do you have a daily concern for operating your computer securely?

Cheers!

"Yep, Mac, Windows, Sun & Linux servers, Cisco & more. Thats my bag, every day."

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11375/33084#33084