A1 - forget time here. with popularity and useability constraints in getting to the lower portions of the system are what is currently restricting many potential discoveries; while there may be few, its unlikely there are none. Man hours wise, MS software probably recieves more than a billion times more hours than OSX on a daily basis.

A2 Part 1 - It is not possible to immediately "investigate" a system and rate it as secure. This is the nature of security, and is a product of systems complexity.

A2 Part 2 - Most other OS's recieve security information from both the user and developer sides of the community. It has become clear from the BSD platforms that Open Source software can be better than closed source software in the security world, as with more developers reading the code, more errors are spotted more often. Like MS, Apple loose out on this luxury.

A3 - At very least the current versions being sold.

It's okay to ask someone to be better than all the rest. But don't blame them for being just like the rest, when their experience-to-date doesn't require that they be any better.
-This statement contradicts itself. You are trying to suggest that Apple are better, and yet you say it is acceptable for them not to be better as experience says that they dont have to be? Not understood.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/256/27598#27598