guitarzan
Premium
join:2004-05-04
Skytop, PA | reply to hahahahahahaha
Re: MAC asked for it...
Thanks for that clip, its pretty cool  |
|
zipwired
Premium
join:2005-04-06
Hampton, VA
| reply to justin
said by justin  :47 to 38 over a small period reported by symantec which is trying to sell software is very incomplete information. Which of these bugs allowed software to be installed? which were exploited and how easy was it? which were fixed immediately, and which took a week+ to be fixed? who found and reported each bug? all of these things need consideration before you can declare anything about the two browsers and their relative security. I didn't declare that any Browser mentioned is more secure.
The blanket statement of IE has more holes than Firefox is what I replied to and in general terms, and I'm correct. Don't put words in my mouth or in this case don't put text in my mouth. |
|
hahahahahahaha
@rogers.com
| reply to guitarzan
Linux?
Oh sorry, I thought you were FreeBSD.
»www.youtube.com/watch?v=gFAJDbV9···&search=
YouTube - Mac Spoof: Security |
|
justin
Australian
join:1999-05-28
Brooklyn, NY
Host:
IPv6
Business Connectiv..
Home/Office setup ..
Console/Handheld g..
Console Tech
| reply to zipwired
47 to 38 over a small period reported by symantec which is trying to sell software is very incomplete information.
Which of these bugs allowed software to be installed? which were exploited and how easy was it? which were fixed immediately, and which took a week+ to be fixed? who found and reported each bug?
all of these things need consideration before you can declare anything about the two browsers and their relative security. |
|
zipwired
Premium
join:2005-04-06
Hampton, VA
| reply to blueOne
said by blueOne :said by chemaupr :# 1 reason PCs are more vulnerable is because they are the most used, So, it could also be said that the reason IE has so many holes compared to Firefox is because it is more widely used. I disagree, Firefox has more known holes compared to Microsoft Internet Explorer »www.webuser.co.uk/news/news.php?id=95859 |
|
guitarzan
Premium
join:2004-05-04
Skytop, PA
 ·epix
| reply to tcp1
I don't have a Mac, nor will I bash a Mac. I have Linux on one PC and XP on the other PC.
Just taking into account consideration who is delivering the FUD mail, in an attempt to drum up support of their, IMO, crappy bloated software product 
--
Bass....the glue of rhythm and harmony...the heartbeat of the band.! Shaking the earth with deep,sonorous vibrations.The dark ominous thunder of an approching storm. |
|
justin
Australian
join:1999-05-28
Brooklyn, NY
Host:
IPv6
Business Connectiv..
Home/Office setup ..
Console/Handheld g..
Console Tech
| reply to sporkme
that guy kinda looks like your avatar, now you come to post the two close together!
if it is kool aid, it is anutritional variety. My folks home PC problems shrank to basically nothing after i threw out their krufty windows machine and put in an imac. I can't remotely support them over 12000 miles. I'd bet the price of that imac that it doesn't get owned in 2007 and it doesn't break through accidently software reconfiguration either. For them the PC is now almost as usable as their TV or cellphone (and believe me, they are not power cellphone users here). Since a new PC hardly has a useful life of more than a couple of years, and explaining how to solve windows problems to family members takes days off my life, it was an absolute no brainer of a decision. There was no reasonabl;e alternative. |
|
sporkme
drop the crantini and move it, sister
Premium,MVM
join:2000-07-01
Morristown, NJ
 ·Optimum Online
| reply to justin
oh yeah! |
|
|
justin
Australian
join:1999-05-28
Brooklyn, NY
Host:
IPv6
Business Connectiv..
Home/Office setup ..
Console/Handheld g..
Console Tech
| reply to Nerdtalker
Re: ummmmmm
said by Nerdtalker :(which is fixed in the latest Vista builds), I've been hearing "fixed in the next release" now for so many years from microsoft. Along with "we're making secure software a culture from the ground up" and many other platitudes. I just don't buy it, I think the weight of dragging around so many variants of the same OS and so much legacy code is beyond their capabilities - which are not particular startling anyway - when does microsoft ever really take a risk? ever open up a given field without buying the pioneers? I think top management spends too much time watching what everyone else is doing (see their latest effort at trying to compete with myspace), and trying to freeze the current favorable market position, to really innovate. Good security design needs at least some innovations, some ground up work, not copy and tweak.
There are as many if not more pitfalls pratfalls and problems as there ever were, more than when the first disks started infecting over sneaker net except now we have Byzantine security issues with overlapping and often incompatible 3rd party programs. I don't see that changing with vista. If that is how home general-use computing MUST be, then I'm not the least bit interested in it and dont recommend it to anyone. You should not have to "think nerd" in order to safely own a home PC.
So far, Macs have avoided most of these problems and continue to avoid them and the details of how they got to this position are not that important. the day i find out that ipods, with an 80 whatever percent market share, need an AV scanner and microsoft zune, or whatever it is, does not, I might see if Vista 2 doesnt need Symantec. Until then... |
|
BhuddaBlessU
join:2006-09-24
Internet |  reply to cableties
Re: Mac Is Nothing...
Another Mac user that can NOT accept the reality... |
|
BhuddaBlessU
join:2006-09-24
Internet
| reply to PhoenixAZ
I Guess this guy never BUILD himself his own PC tho... That $4,000 dell? Lol I Can get it with the SAME SPECS for like $2500 to $3,000 bucks or less... In the end Self Built Custom PC + Windows + Not-A-Noob in computer hardware and security user = the most stable and secure computer you can have...  |
|
Nerdtalker
Working Hard, Or Hardly Working?
Premium,MVM
join:2003-02-18
Tucson, AZ
clubs:
| reply to justin
Re: ummmmmm
said by justin :Instead you should be trying to defend why running admin by default (most windows PCs run admin) is not a problem, and why the complexity of activeX is not a problem, and why releasing fixes at monthly intervals is not a problem (for the average user (users that make up the audience of AV vendors). There really isn't any refuting that administrator privileges aren't an inherent problem (which is fixed in the latest Vista builds), but that alone doesn't guarantee security. Simply requesting login credentials to make changes isn't going to somehow fix the problem, we've seen time and time over how users will blindly click ok, fill out forms, and hit "next" over and over until boxes go away. (remember ActiveX warnings, SSL certificate authenticity warnings, execute files after downloading warnings, e.t.c.?)
While it does prevent processes running as the user from arbitrarily executing code with administrator privileges, malicious software can still run.
As for ActiveX, alternative browsers (namely firefox) mitigate the problem this poses. Honestly, I use firefox exclusively to avoid ActiveX-related exploits, and SP2's IE does do a better job of alerting users to the inherent danger that comes with allowing ActiveX plugins.
Monthly updates are ok, but Microsoft has previously released some critical updates outside their prescribed schedule. At least the updates are rolling out.
I guess the thing is that I subscribe to the notion that security inherently lies with the user, and that no software is perfect. If Mac users continue thinking they're never going to be afflicted by security problems or have to deal with it eventually, they're adopting a foolhardy mindset that comes with implicit dangers. Shipping a product under the premise that it's "more secure", and less vulnerable to "malware" is simply astounding.
Ironically, some of the same things Mac users criticize Microsoft users about aren't implemented properly in their own OS. OS X's firewall ships "off" by default. That's pretty ironic, since SP2 at least ships with the windows firewall enabled, even if SP1 shipped with it buried. It's true that OS X does ship with more out-of-box security than Windows XP, but neither are fully secure.
In both circumstances, users' behaviors and actions dictate the security of the information systems they use. Outsourcing security to faceless developers has failed in the past, and will likely always fail.
--
"Some people never see the light till it shines thru bullet holes." -Bruce Cockburn
I'm testing Gmail's spam filters: Broadbandreports1@gmail.com
Spam: 12900+ messages currently using 406 MB. |
|
justin
Australian
join:1999-05-28
Brooklyn, NY
Host:
IPv6
Business Connectiv..
Home/Office setup ..
Console/Handheld g..
Console Tech
| reply to Nerdtalker
he just said it isn't about IMMUNITY, it is about some basic design decisions.
It is a very good argument for why neophyte Mac users are beset with far fewer headaches than neophyte windows users.
Whether the gap will open wider, shrink or stay the same is impossible to say.
Nobody is talking immunity here, you're building a straw man by using the word, then knocking it down.
Instead you should be trying to defend why running admin by default (most windows PCs run admin) is not a problem, and why the complexity of activeX is not a problem, and why releasing fixes at monthly intervals is not a problem (for the average user (users that make up the audience of AV vendors). |
|
Nerdtalker
Working Hard, Or Hardly Working?
Premium,MVM
join:2003-02-18
Tucson, AZ
clubs:
| reply to mech1164
said by mech1164 :said by Nerdtalker :Nothing is perfectly safe. If Mac users still think they're immune, the inevitable fall will simply be that much proportionally greater.
Ok one more time from the top. It is and has not been that OSX is immune so much as it doesn't allow it to happen in the first place. First OSX does not by default allow you to run as admin. That and the fact that when a shown fault might occur, Apple will be out in a few hrs or days with a fix for that. Now take XP, admin by default any vulnerability able to execute at will. IE tied directly to os. Nuff on that one. Known exploits and vulnerabilities not fixed or admitted to for months. This is why there are soo much viri and malware its just soo easy. You just spouted more typical apple-immunity lines.
Again, keep thinking you're inherently immune. I suggest you read the actual article in mention, as well, since patches/bugfixes/vulnerability patches are taking longer and longer to get released, certainly not hours like you assert. I find that blatant mischaracterization of facts laughable.
IE? Who uses that and knows a thing about security online? The rest of us are using Firefox. And months for the most critical of Windows patches?
Oh, I'm sorry, I forgot that facts don't have to get in the way of Mac vs. PC arguments. 
--
"Some people never see the light till it shines thru bullet holes." -Bruce Cockburn
I'm testing Gmail's spam filters: Broadbandreports1@gmail.com
Spam: 12900+ messages currently using 406 MB. |
|
mech1164
I'Ll Be Back
join:2001-11-19
Lodi, NJ
1 edit | reply to Nerdtalker
said by Nerdtalker :Nothing is perfectly safe. If Mac users still think they're immune, the inevitable fall will simply be that much proportionally greater. Ok one more time from the top. It is and has not been that OSX is immune so much as it doesn't allow it to happen in the first place. First OSX does not by default allow you to run as admin. That and the fact that when a shown fault might occur, Apple will be out in a few hrs or days with a fix for that. Now take XP, admin by default any vulnerability able to execute at will. IE tied directly to os. Nuff on that one. Known exploits and vulnerabilities not fixed or admitted to for months. This is why there are soo much viri and malware its just soo easy. |
|
justin
Australian
join:1999-05-28
Brooklyn, NY
Host:
IPv6
Business Connectiv..
Home/Office setup ..
Console/Handheld g..
Console Tech
| reply to TKJunkMail
Re: MAC asked for it...
now come on a sec.
PHP is a known problem, OSX can't do anything about people downloading and installing web servers. A third party developer on OSX can make mistakes just like they can on windows. The mistakes are more costly when the software runs as root on OSX (I'm sure php/apache is still easily setup as root - stupid design decision by the packages of php for OSX and linux).
We're (should be) talking about whether the mac OPERATING SYSTEM (and apple controlled sofware), is known to have exploited holes. I'm still waiting to hear about botnets assembled thanks to an apple OSX hole, hell, even a Safari or firefox hole. The list of microsoft holes is huge, and many have been and are still being used to create botnets. |
|
TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
 ·Sprint Mobile Broa..
·Comcast
2 edits | reply to justin
said by justin :There are no, none, nada Mac botnets, spam and click-fraud generators! Macs are part of botnets. They got that way thru 3rd party software running on the Mac. Does it matter that the vector of control wasn't thru the operating system?
»www.washingtonpost.com/wp-dyn/co···279.html
»blog.washingtonpost.com/security···ack.html
Taylor became obsessed with tracking a rather unusual botnet consisting of computers running Mac OS X and Linux operating systems. Working a week straight, Taylor located nearly all of the infected machines and had some success notifying the owners of those systems, but the Taiwanese ISP the hackers used to host their control center repeatedly ignored his requests to shutter the site."
The botnet Taylor had tracked was created using a known security hole not in Linux or OS X, but in something that runs on top of the operating system. This is PHP, a development programming language built specifically for Web sites. By leveraging this PHP flaw, the attackers were able to seed the Mac systems with several tools designed to turn them into drones for use in waging destructive "distributed denial of service" attacks,
But the fact is that there are dozens of pieces of malicious code circulating online that will happily infect OS X systems if their users are running vulnerable third-party applications. In some cases, the impact on the user may be little more than public embarassment. A large number of Web sites running vulnerable PHP applications on OS X systems are regularly defaced by hacker groups who replace the sites' home pages with hacker screeds or even some political statements.
Shadowserver founder Nicholas Albright said he and his crew have found at least 20 variants of the same Perl script that can be used to open back doors on OS X systems running vulnerable Web applications.
"Why does everyone get all hot and bothered when someone mentions Mac OS X being in a botnet?" Taylor asked. "Maybe I should have said I was tracking several PHP-enabled computer systems. I think it is time to quit focusing on just the ... operating system and think about the applications that are installed on it and how the security of the system can be compromised by [them]." --
--
Join Red Room Forum
BLOG tkjunkmail.blogspot.com
My Web Page |
|
PhoenixAZ
Joshua
Premium
join:2004-01-04
Phoenix, AZ
| reply to trparky
Re: ummmmmm
said by trparky :They're just trying to make them look useful again. In my eyes, Symantec hasn't been useful since NAV2003. Ever since NAV2003, it has been nothing but bloat, bugs, bloat, bugs, and more bloat and bugs. Symantec isn't useful for any OS. Even their Enterprise edition software is becoming bloatware like NAV.
--
»www.myspace.com/iamreallycoolandyouarenot |
|
PhoenixAZ
Joshua
Premium
join:2004-01-04
Phoenix, AZ
2 edits | reply to BhuddaBlessU
Re: Mac Is Nothing...
Being a Windows user myself, Windows is more expensive. Try pricing a Dell up to Apple's specs, it will be in the near $4,000s...then you will see that Apple is actually CHEAPER than most comparibly priced PCs. And since new Apple computers can run Windows, I do not see what is stopping them from going that direction. Though for me on the other hand, I do not plan to go Mac anytime soon, as tempted I was in the past.
--
»www.myspace.com/iamreallycoolandyouarenot |
|
tcp1
Premium
join:2000-04-17
Herndon, VA | reply to guitarzan
Re: MAC asked for it...
Right, what a great idea. Just close your eyes and pretend your mac is impervious.
Good luck with that one. |
|
