Leo says Macs not inherently safer than Windows

Two words: Attack Surface. Try this easy experiment. In a command window on a Mac and on Windows do the following: netstat -a. Now count the number of open ports. Who has more?

The primary reason for Windows insecurity is the fact that by default users run as root. So when your infected your totally screwed. On the Mac however, malware can do very limited damage because users don't run as root. I also firmly believe a big part of the virus problem is because Microsoft has made a lot of enemies over the years. How many companies have been put out of business and developers pissed-off by their monopolistic tactics. Apple on the other hand has kept it's nose clean for the most part and has a lot of karma to burn. Apple has a very loyal fanbase and when issues crop up there are usually freeware solutions available quickly. I'm certain that should a virus present itself the community will respond quickly to eradicate it.

well guys... you are having serious problems on determining how secure an OS can be. Im not an expert on the subject, but i can say know a lot, cause of my work. You dont determine the security of an OS saying that an user can type its password every time its prompted.. Or saying that an OS is not secure enough, cause someone spent 3 days attacking it with a bruteforce cracking program, and in fact got the telnet or ssh password. C'mon, that doesnt have anything to do wiht "OS security", thats USER security. If you dont use a good pass, or you leave ports opened, or you neglect to read wich application is asking you for your pass, then thats YOUR fault. Your BAD... I've benn using a mac for 2 years now, and i can say that is a LOT secure than Windows, and by a lot a I mean %150+... Just think this, a regular user, doesnt have to worry about antivirus, port that come open by default, pop ups, etc... But lets get real, no software ever made is TOTALLY inmune to malware.. so OSX isnt inmune. As someone said before, OSX comes well protected.. and that protection is compared with linux protection!! (and thats big).

The Mac is inherently safer than Windows. The Mac's OS is not perfect and will probably some day be struck by a virus. The two statements are not mutually exclusive. Why do you have trouble with those two concepts?

Laugh. Yes, Lots of people get it. You can have a safer car and a safer OS, but there are still no guarantees in life. Yes, OS X shouldn't allow you to install apps with out passwords, but this is not fool-proof. Plus, a lot of hacks, spy-ware, viruses do not care about complete control, just stealing data or cpu cycles. Spam is an issue in Mail. that's why everyone has a spam filter for their apps. Tips Use a great password, not your dogs name, bob, 1234, etc. If I can go thru your files and guess your password in a day/week, then a crack program probably has it by now. Turn on all the goodies - firewall, block UDP Traffic, log firewall, enable stealth Use multiple login accounts for different tasks - paying bills, work, play. This helps separate risk if one doesn't gain root access. Lock down documents by storing them in password protected disk images. Only keep those images mounted when they are being used. Back up. Leave your computer off. Always. this guarantees you can't catch anything. =+)

It would be nice if people expressed only informed decisions online. But we all know that doesn't always happen. Someone comes up with a clever "comeback" against Macs, such as "Well, there aren't any of them so they don't get viruses," and everyone passes it around. It is an interesting hypothesis, but where's the evidence? I had an Amiga years and years ago. There were a total worldwide 3 million (IIRC) Amiga owners. Only 3 million! Total! And we had viruses. Perhaps a few dozen. OS X has 0. Now, does that mean it is bulletproof? No. It just adds doubt to the hypothesis that having a small userbase prevents viruses. Evidence that OS X is "more" secure: 1. Since 2000, OS X has shipped with all ports closed. Yes, I know that Service Pack II (WinXP) ships with the firewall activated--thank goodness!! But that's a recent change. 2. No ActiveX. 3. System is protected. Not perfect, but it is protected. 4. System warns user before completing download of an application. 5. System warns user before running any app (other than system apps, I think) for the first time. 6. Safari (web browser) blocks pop-ups and does not allow cookies from advertisers' sites. That helps confound advertisers' efforts to profile users (read grc.com). 7. Apache doesn't run as root. 8. OS X has been around for about five years now with no viruses, worms or spyware. Fact as of 11/22/05 Ex2bot

" I am firmly in the camp that Macs aren't perfect, and that eventually someone is going to take advantage of a trusting Mac user base and cause lots of trouble. Other folks think that Macs are vastly superior to Windows, and that a scenario like that would never happen." Then there are other folks yet, who do not believe Macs are perfect, but vastly superior to Windows in terms of security, and although there may be exploits the trouble-causing will be far smaller than the security flaws that Windows offers.

Thorn, As I just wrote over on Leo's site: ------- The definitive guide to this was the "Mad as Hell; Switching to Mac" series of blogs by Computer Security Expert Winn Schwartau. He gave the Mac platform a one-month trial and evaluates all the angles on his blog at http://securityawareness.blogspot.com/2005/09/mad-as-hell-switching-to-mac-1-16.html One month conclusion? "GRADE: A-: For managing to create a much safer and more secure computing environment that is more productive than any WinTel solution I have seen since DOS 5.0. (DOSTEL)." and, 3 months later, in his 17th installment and conclusion to the series he writes: "My first goal was to determine if the Mac switch was worth it, and yet, it was unquestionably one of the smartest things I have ever done, albeit late. My tech-stress level is way down. Things just work they way they should. My productivity is way the hell up! I dont have to waste time trouble shooting." Leo, you really need to at least borrow a Mac to try before you try to answer the question posed... -------

"Why would anyone write a virus for an OS that only has a couple thousand copies?" Because in short order after being released, it'll be fast on its way to becoming the OS w/ the most marketshare. Because a lot of people hate Microsoft and love to embarass them whenever possible (esp. after they make bold statements about how safe their next OS is going to be). Because it probably wasn't very hard for them take the skills they got writing XP malware and tweak them to write Vista malware. :)

One of the points of the article over at The Register is that Windows is evil because most everyone uses Outlook or Outlook Express. He thinks Linux is great because only god knows what email client a user would be using (KMail, Mozilla Mail, Evolution, pine, mutt, emacs). Seems like the majority of OS X folks use Mail.app, putting it in the same boat as most Windows folks using Outlook. IMO, the guy was stretching with some of his points when it comes to Linux and security, ... very few of it can be applied to the OS X world.