Mac Security

["Todd Towles" <toddtowles () brookshires com>]

http://news.bbc.co.uk/2/hi/technology/4620548.stm

Note - I am not a mac user.

I think several issues were't included that perhaps should be talked
about. Given OSX has moved into the UNIX security model, which is a very
good thing IMHO, however that only deals with the OS directly. You can
have a locked down FreeBSD box, but if you put a vulernable PHP app on
top of it..you are toast.

Attacking apps is the new trend, this is seen by all of us and pushed
very well in the SANS Top 20. Many OSS programs are ported to Mac and
most likely carry these security issues with them to that OS, so why do
mac user get some mad when Bill asked them to think more about the
security of there system..

It would seem that many of the people that "fight back for the mac" are
all too concerned about the automatic worm threat, instead of the new
app attacking trend and possible targeted attacks.

It is only a matter of time before some OSS vuln helps people attack
OSX...comments?

-Todd



_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.