Comment Surprising (Score 1) 249
I think it's surprising that there are still people believing MACs are much securer than Windows...
Considering that there are quiet some sources which claim otherwise (http://www.techworld.com/security/news/index.cfm? newsid=1798):
"Mac OS X doesn't stand out as particularly more secure than the competition, according to Secunia. Of the 36 advisories issued in 2003-2004, 61 percent could be exploited across the Internet and 32 percent enabled attackers to take over the system. The proportion of critical bugs was also comparable with other software: 33 percent of the OS X vulnerabilities were "highly" or "extremely" critical by Secunia's reckoning, compared with 30 percent for XP Professional and 27 percent for SLES 8 and just 12 percent for Advanced Server 3. OS X had the highest proportion of "extremely critical" bugs at 19 percent."
Not to forget the OS X Advisories:
"An error in Safari / LaunchServices can cause a malicious application to appear as a safe file type. This may cause a malicious file to be executed automatically when visiting a malicious web site."
"A boundary error in ImageIO within the handling of TIFF images can be exploited to cause a stack-based buffer overflow. This crashes an affected application and may allow arbitrary code execution when a specially crafted TIFF image is viewed."
"A format string error within the logging functionality of the setuid program "launchd" can be exploited by local users to execute arbitrary code with system privileges."
And finally an unpatched Mac OS X bug:
"Michael Lehn has discovered a vulnerability in Mac OS X, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in the processing of file association meta data in ZIP archives (stored in the "__MACOSX" folder) and mail messages (defined via the AppleDouble MIME format). This can be exploited to trick users into executing a malicious shell script renamed to a safe file extension stored in a ZIP archive or in a mail attachment.
This can also be exploited automatically via the Safari browser when visiting a malicious web site."
Summary:
Everyone who claims Mac OS X is secure ... ... has no fucking idea what he is talking about
or ... is a OS X fanboy
Of course at the moment there are far less people targeting OS X with their trojans/viruses/... but this could change.
Considering that there are quiet some sources which claim otherwise (http://www.techworld.com/security/news/index.cfm
"Mac OS X doesn't stand out as particularly more secure than the competition, according to Secunia. Of the 36 advisories issued in 2003-2004, 61 percent could be exploited across the Internet and 32 percent enabled attackers to take over the system. The proportion of critical bugs was also comparable with other software: 33 percent of the OS X vulnerabilities were "highly" or "extremely" critical by Secunia's reckoning, compared with 30 percent for XP Professional and 27 percent for SLES 8 and just 12 percent for Advanced Server 3. OS X had the highest proportion of "extremely critical" bugs at 19 percent."
Not to forget the OS X Advisories:
"An error in Safari / LaunchServices can cause a malicious application to appear as a safe file type. This may cause a malicious file to be executed automatically when visiting a malicious web site."
"A boundary error in ImageIO within the handling of TIFF images can be exploited to cause a stack-based buffer overflow. This crashes an affected application and may allow arbitrary code execution when a specially crafted TIFF image is viewed."
"A format string error within the logging functionality of the setuid program "launchd" can be exploited by local users to execute arbitrary code with system privileges."
And finally an unpatched Mac OS X bug:
"Michael Lehn has discovered a vulnerability in Mac OS X, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in the processing of file association meta data in ZIP archives (stored in the "__MACOSX" folder) and mail messages (defined via the AppleDouble MIME format). This can be exploited to trick users into executing a malicious shell script renamed to a safe file extension stored in a ZIP archive or in a mail attachment.
This can also be exploited automatically via the Safari browser when visiting a malicious web site."
Summary:
Everyone who claims Mac OS X is secure
or
Of course at the moment there are far less people targeting OS X with their trojans/viruses/... but this could change.
