ie8 fix
madison

The Ed Bott Report

Ed Bott
Home / News & Blogs / The Ed Bott Report

Where did all the Mac malware go?

By | August 1, 2011, 3:00am PDT

Summary: Mac Defender made life miserable for Apple and its support technicians for the entire month of May, before fading away in mid-June. The Mac Defender gang is laying low, but I’m convinced they’ll be back. And I’ve seen evidence that suggests the next round of Mac malware could be significantly worse.

The last time I saw Mac Defender in the wild was on June 23rd. This nasty bit of Mac malware made life miserable for Apple and its support technicians for the entire month of May, before fading away in mid-June.

The Mac Defender gang is laying low, but I’m convinced they’ll be back. And I’ve seen evidence that suggests the next round of Mac malware could be significantly worse.

I monitored the progress of Mac Defender and its variants from the beginning of May, shortly after it first appeared in the wild, until the end of June. The gang distributing this malware had virtually no obstacles on OS X for its first month of operation, and they made a tremendous impact. Leaked documents confirmed that Apple was conducting an internal investigation as of May 16, but the company didn’t publicly acknowledge the problem until May 24. On May 31, Apple released its first-ever security update specifically aimed at malware.

That led to a lengthy cat-and-mouse game between Apple and the Mac Defender crew, with Apple releasing updated signatures every day and the bad guys tweaking their code within hours to evade detection.

Confused about what Mac Defender and its variants are all about? See Anatomy of a malware attack: the complete Mac Defender timeline for a full chronology.

On June 23, all of the servers that had been dispensing this threat simply disappeared. In a series of Google searches today I found dozens of poisoned results. I confirmed that the compromised web sites they lead to are still running. But the scripts on those hijacked sites that had been so effective in redirecting ordinary Mac users and making their lives miserable now lead to a dead end.

The sudden drop in activity convinced Nick Clayton of the Wall Street Journal to declare: “Apple Users Still Entitled to Be Smug.” Richard Gaywood of TUAW, after looking at Apple’s malware-detection scripts, was more cautious, sprinkling his conclusion with qualifiers: “Still, for now, I think Mac users who were worried about MacDefender can partly relax. The wolf is still not at our door.” [emphasis added]

So, what happened? And what’s next?

I don’t think the Mac Defender gang quit primarily because of Apple’s efforts. Their campaign targeted both Macs and PCs. If you visited a poisoned search result using a PC, you were redirected to a site that served up fake antivirus software for Windows; if you were using a Mac, the script sent you to a site that tried to install Mac Defender or one of its variants. The Windows attacks stopped on June 23, the same time as the Mac Defender servers went offline.

Based on my observations, I think this malware campaign simply ran its course. Apple’s response made a small dent in its impact. More importantly, Google got much better at detecting the poisoned search results and blocking them, which lowered the rate of return on Mac Defender installation attempts. In my June 19 analysis of Apple’s response, I referred to the attack in the past tense and speculated that it was about to end:

I still believe the Mac Defender attack was a successful proof of concept for the bad guys. The social engineering was excellent, and I am certain it brought in enough ill-gotten gains to bankroll the next phase of development.

Remember, this was done via a malware toolkit—the first one ever released for the Mac platform. The next version of this toolkit is being written with full knowledge of how Security Update 2011-003 works. The bad guys are counting on Apple taking weeks to work up its response. That could make Mac Defender version 2.0 very nasty indeed.

And indeed, there is now some sketchy evidence to suggest what the next wave of Mac malware will look like.

On June 16, someone uploaded a compressed file to VirusTotal.com for analysis. It was detected by 4 of 42 antivirus engines as a generic Windows Trojan that steals passwords and performs keystroke logging. But the interesting detail didn’t emerge until a few weeks later, when security researchers at the Microsoft Malware Protection Center (MMPC) took a closer look at the file and determined that it actually included two packages—one for Windows, and one for OS X:

The content folder includes photos from events on June 15th 2011. Alongside are two malicious binary executable files:

  • Video-Current events 2009 July 5.exe (205,480 bytes) PE EXE
  • Current events 2009 July 5 (50,956 bytes) Mach-O I386

A July 27 post from noted security researcher Mila Parkour confirms the contents of the compressed package. She suggests that it was used for “targeted attacks” that would be effective against victims regardless of whether they’re using using PCs or Macs.

Interestingly, the two files are variants of the same backdoor malware: the Windows version is called Wolyx, the Mac version is dubbed Olyx. Here’s a description of how Olyx works:

The Mach-O binary file targets Mac OS X users. It installs and runs in the background without root or administrator privileges. It disguises itself as a Google application support file by creating a folder named “google” in the /Library/Application Support directory, where the backdoor installs as “startp”. It also keeps a copy in the temporary folder as “google.tmp“.  It creates “www.google.com.tstart.plist” in the/Library/LaunchAgents, to ensure that it launches the backdoor only once when the user logs in - this applies to all accounts on the system.

[…]

Once connected, the remote attacker may take advantage of the backdoor file management feature which allows it to upload, download and navigate through files and directory.

It’s entirely possible that a package like this is being distributed right now in very small numbers, under the radar. The most recent XProtect.plist definitions file for OS X does not include a definition for this piece of malware, although third-party Mac antivirus programs do.

And even if Apple does add a definition for that piece of malware, I suspect that the next iteration of the Mac malware authoring kit will include a feature to bring it up to parity with its Windows counterparts. These days, malware attacks on the Windows side typically use polymorphic code that makes every sample unique. The technique makes signature-based malware detection systems, like Apple’s XProtect, essentially useless.

The bad guys have lots of ways to distribute malware: booby-trapped porn sites, bogus audio and video codecs, pirated copies of software that come with “a little something extra,” even fake security updates. The increasing success of the Mac platform and its relatively weak security ecosystem means easy pickings for enterprising crooks.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “The Ed Bott Report”

Topics

Apple Macintosh, Malware, Apple Inc., Spyware, Adware & Malware, Cyberthreats, Desktops, Viruses And Worms, Security, Hardware, Ed Bott

Ed Bott is an award-winning technology writer with more than two decades' experience writing for mainstream media outlets and online publications.

Disclosure

Ed Bott

Ed Bott is a freelance technical journalist and book author. All work that Ed does is on a contractual basis.

Since 1994, Ed has written more than 25 books about Microsoft Windows and Office. Along with various co-authors, Ed is completely responsible for the content of the books he writes. As a key part of his contractual relationship with publishers, he gives them permission to print and distribute the content he writes and to pay him a royalty based on the actual sales of those books. Ed's books written prior to fall 2011 have been distributed by Que Publishing (a division of Pearson Education) and by Microsoft Press. As of November 2011, Ed is a partner in the independent publishing company Fair Trade Digital Exchange, which exclusively publishes his books.

On occasion, Ed accepts consulting assignments. In recent years, he has worked as an expert witness in cases where his experience and knowledge of Microsoft and Microsoft Windows have been useful. In each such case, his compensation is on an hourly basis, and he is hired as a witness, not an advocate.

Ed does not own stock or have any other financial interest in Microsoft or any other software company. He owns 500 shares of stock in EMC Corporation, which was purchased before the company's acquisition of VMware. In addition, he owns 350 shares of stock in Intel Corporation, purchased more than two years ago. All stocks are held in retirement accounts for long-term growth.

Ed does not accept gifts from companies he covers. All hardware products he writes about are purchased with his own funds or are review units covered under formal loan agreements and are returned after the review is complete.

Biography

Ed Bott

Ed Bott is an award-winning technology writer with more than two decades' experience writing for mainstream media outlets and online publications. He's served as editor of the U.S. edition of PC Computing and managing editor of PC World; both publications had monthly paid circulation in excess of 1 million during his tenure. He is the author of more than 25 books on Microsoft Windows and Office, including the recently released Windows 7 Inside Out.

198
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Where did all the Mac malware go?
delpidelpi 19th Oct
@bannedfromzdnetagainandagain black friday nikon lens
black friday canon lens
black friday camcorder
camcorder black friday
canon lens black friday
Nikon D5100 Black Friday
Black Friday Nikon D7000
Black Friday Nikon D3100
View in thread
0 Votes
+ -
Article what 10 for the one piece of Mac malware
Richard Flude 1st Aug
Lucky Ed doesn't have to do the same for windows;-)
0 Votes
+ -
Message has been deleted.
bannedfromzdnetagainandagain Updated - 1st Aug
0 Votes
+ -
In defense of Ed
HollywoodDog Updated - 1st Aug
@bannedfromzdnetagainandagain ... (did I just say that?) - the column formerly known as 'Ed Bott's Microsoft Report' (now 'Ed's Report About What's Wrong With Apple') certainly delights in emphasizing Apple's problems.

However, it does present factual information without a lot of opinion and hype. I will confess to its being my primary source of information about Mac malware issues and what Apple support is or isn't doing about them.

His reporting has been thorough and accurate and has put pressure on weak points at Apple support.

Ok, now I need to go wash my hands.
0 Votes
+ -
RE: Where did all the Mac malware go?
josh92 1st Aug
@bannedfromzdnetagainandagain

Haven't you been reading the articles on the Mac malware? One at least one of the articles it clearly stated that some versions of the Mac Defender malware were able to install themselves and get root access without you having to type in your admin password. It did not have to be manually downloaded in these versions. It did not have to be installed by typing in your admin password. This version was not dependent on all that. This is why it's looking like such a threat for the future. This nastier version could be coming soon en masse.
0 Votes
+ -
RE: Where did all the Mac malware go?
skippe93 1st Aug
@bannedfromzdnetagainandagain
Correction: The 2nd iteration bypassed the need to enter an administrative password.
0 Votes
+ -
no, josh
bannedfromzdnetagainandagain 1st Aug
@josh92
ed is either a liar or doesn't know what he is talking about. (both, i guess) he is even admitting it in another post. here is what he was writing a few weeks ago:
"The Mac Defender gang already proved they can sidestep the requirement to enter an Administrator password. They already convinced tens of thousands of victims to install a small program that then downloads and installs additional malware without any user interaction."

what??

1. this "small program" has to be installed first. and that"small programm" is the mac defender by the way. that is only possible if a user types in his administrator password. after that of course the software "downloads and installs additional malware without any user interaction", it can do whatever it wants. that's why it is called a trojan.

so even ed unvoluntarily admits that this mac defender works exactly as any other trojan before it: a user has to manually download it to his computer and manually install it by giving his password.

2. the "tens of thousands" of affected user exist only in ed's twisted and apple-hating imagination.
  • Flagged
0 Votes
+ -
RE: Where did all the Mac malware go?
Snowy_River 1st Aug
@josh92

It seems that you're also the one who hasn't been reading carefully. While it is true that some versions of MacDefender could install without a password, it is not true that it could succeed in doing this without user interaction. Nor is it true that it gained root access. So, it still fell into the category of a malware attack that can be defended against through simple education.
0 Votes
+ -
RE: Where did all the Mac malware go?
snoop0x7b 1st Aug
@bannedfromzdnetagainandagain

I don't think the 10s of thousands are made up because a few people I know (who are morons, but that's besides the point) managed to get it. I used Ed's original advice to clean it up. YOU may not get it, but other people do.
0 Votes
+ -
RE: Where did all the Mac malware go?
markbyrn 1st Aug
@bannedfromzdnetagainandagain you got the quote of the day, ...microsoft shill and spin doctor ed comes out of the woodwork hoping and praying for a next wave of malware for mac users... Ed is shamelessly transparent.
  • Flagged
0 Votes
+ -
RE: Where did all the Mac malware go?
Pete "athynz" Athens 1st Aug
@bannedfromzdnetagainandagain Ah yes, yet another mac user with a case of headinthesanditis... come one dude, if this was not an issue that could potentially affect all mac users, if this was a made up issue as you claim then WHY would Apple go to the trouble of creating and maintaining a mac antimalware program?

It's already been proven that the trojan does NOT have to be manually downloaded - do your research! And Also Ed is not claiming that the quantity of the malware issues with windows is the same as any other platform - that is FUD you and other haters have come up with as some sort of strawman to make yourself feel better.

But by all means go and do whatever it is you want to do, believe whatever you want to believe... just take one thing away from this: When your mac becomes infected - and it will, it's just a matter of time now - Ed will be here to help you get it right again. And me - I'll be laughing my ass off at you for not accepting the simple truth that macs are not invulnerable.
0 Votes
+ -
save
bannedfromzdnetagainandagain 1st Aug
@athynz
no one ever said the mac is 100% safe from malware. there is the occasional trojan (mac defender is nothing new or doesn't behave in another way as any mac trojan before it) and the occasional exploit through software security holes (safari for instance). yes, even a mac user shouldn't download and install software from a source he or she doesn't trust. social scams do occur.

it is just a 1000 times safer than the windows platform with hundreds of thousands of viruses, worms, trojans and the exploit of the month. ed is desperately trying to paint the picture that the mac has the same security nightmare as windows or at least will have soon, now that worldwide market share has increased form 4.5% to 5.2% (really, i am not kidding, this is his argument: the mac is now sooooo much more popular than three years ago). which of course is total bs.
  • Flagged
0 Votes
+ -
mac defender or macguard does not auto-install without interaction
~doolittle~ 1st Aug
@josh92 wrote "downloads and installs additional malware without any user interaction."

Have to agree with the consensus, this is completely false.


@josh92 wrote "some versions of the Mac Defender malware were able to install themselves and get root access without you having to type in your admin password"

That is "macguard" - it will not "auto-install" but it does "auto-run", and it is still interactive where you will have a installer program that has to be run. If the account is an admin account (which is default user type) yes you will not need the admin PW.

For non-security-conscience people, I am not sure if needing the admin PW is even an issue since they would have just clicked through the install windows-style, no matter what program it was.

Preventative efforts:

- install "Security Update 2011-003" from apple (already pushed out to users via auto-update)
- run as non-admin user
- disable Safari's "auto-open safe files" (or use Firefox, which will force manual download/install for all applications)
0 Votes
+ -
RE: Where did all the Mac malware go?
lelandhendrix@... 1st Aug
@josh92
All of this malware has just started it's installation routine, and only fools click through and install it.

If you are using your computer and suddenly an installer appears, do you click through several steps and install a program that you didn't download or look for or want? If so, you will never be safe no matter what platform you use. That's what we are talking about here.

THERE IS NO mac malware in the wild that just suddenly infects your machine without any interaction. There are no viruses, no payloads. Please, never use a Mac.

Ed Bott, I don't think you are qualified to make the statement that the Mac's "relatively weak security ecosystem means easy pickings for enterprising crooks."

And judging by the comments here, you haven't enlightened many people, you just made them woefully misinformed.
0 Votes
+ -
RE: Where did all the Mac malware go?
alasiri5 Updated - 11th Aug
@bannedfromzdnetagainandagain I'm afraid that the jury is still out...way out...on that one. While it may be true that Android activa t ion numbers seem to dwarf iPhone activation numbers (something we're not seeing in the tablet market yet, and may never see), there are a nu mber of other sources that point to the fact that it seems that the majority of Android users are significantly not using their phones for data purposes. When Android phones seem to be significantly dominating the market, but web statistics show a dominance from the iPhone, it has to bring up some significant questions...
0 Votes
+ -
RE: Where did all the Mac malware go?
delpidelpi 19th Oct
@bannedfromzdnetagainandagain black friday nikon lens
black friday canon lens
black friday camcorder
camcorder black friday
canon lens black friday
Nikon D5100 Black Friday
Black Friday Nikon D7000
Black Friday Nikon D3100
0 Votes
+ -
RE: Where did all the Mac malware go?
Harvey Lubin 1st Aug
@josh92: "Haven't you been reading the articles on the Mac malware? One at least one of the articles it clearly stated that some versions of the Mac Defender malware were able to install themselves and get root access without you having to type in your admin password."

There has NEVER been any such version of Mac Defender!!!

Mac Defender is a Trojan, plain and simple. It is an application that must be downloaded and then purposely installed by the duped user onto his/her own computer.

What you are describing is known as a "virus". Although there have been literally THOUSANDS of Windows viruses... there has NEVER been a single virus for Mac OS X!

It's telling that the only way that some Windows users can feel a bit better about being stuck with Windows' "Swiss Cheese" security, is to make up ridiculous false claims about Mac OS X.

If you are feeling that insecure about the operating system that you use, perhaps it's time to try another one. wink
0 Votes
+ -
Message has been deleted.
sinephase Updated - 4th Aug
  • Flagged
0 Votes
+ -
RE: Where did all the Mac malware go?
Pete "athynz" Athens 1st Aug
@Harvey Lubin It's telling that the only way that some Windows users can feel a bit better about being stuck with Windows' "Swiss Cheese" security, is to make up ridiculous false claims about Mac OS X.

Careful your bias is showing. This "swiss cheese" security may have been present in XP and definitely in ME and below but - much like any other platform - Windows is secure as long as the user takes a few simple common sense precautions. I've run Windows from 98 up to 7 and I've had 2 viruses - one with ME, 1 with XP... I've never had one with Vista (perhaps I didn't use it long enough as IMHO it sucked out loud) nor with 7 (which I use on a daily basis).

No OS insecurities here.

There has NEVER been any such version of Mac Defender!!!

Oh and BTW there HAS been a version of the Mac Defender that does not require the use of an administrator password - it basically piggybacks onto another benign program and once THAT program is installed (using the administrator password BTW) the mac defender can get to work.
0 Votes
+ -
RE: Where did all the Mac malware go?
vulpine@... 1st Aug
@sinephase: Would you please list--with references--all the true viruses that have attacked OS X successfully? I don't mean trojans, I mean worms and other viruses that don't require any form of user interaction whatsoever.
0 Votes
+ -
RE: Where did all the Mac malware go?
Cylon Centurion 1st Aug
@vulpine

So basically, you're going to deny there was ever a problem because Mac Defender/Guard wasn't a true virus?

Are you really going to play that dumb definition game?

Mac Defender/Guard might not have been a "virus" by definition, but it was still malware. And as far as Joe User is concerned, it was a virus.
0 Votes
+ -
RE: Where did all the Mac malware go?
blueskip 2nd Aug
@Harvey Lubin I'm afraid sinephase is right.
0 Votes
+ -
RE: Where did all the Mac malware go?
Player_16 Updated - 2nd Aug
@Cylon Centurion:

'Are you really going to play that dumb definition game?'

MAC Defender.A thru .O (or Apple Security, MacDefender, MacProtector, MacSecurity) antivirus was a trojan that carried an application or malware (avRunner -that's not a virus). BUT, you did allow it to intrude which it dumped its payload so it could be deemed a virus -even though it deleted itself.
0 Votes
+ -
RE: Where did all the Mac malware go?
prof123 Updated - 1st Aug
@Richard Flude
What Ed failed to mention was how Apple dealt with the problem - transparently and it seems effectively.

Compare this to MS which introduced technologies like ActiveX which made writing malware for Windows a child's play. Instead of confronting the problem head on, MS chose to outsource to third party anti-virus partners. Their solution was full disk scans and other intrusive methods, which greatly downgraded the user experience...

I say Kudos to Apple who understands their users...
0 Votes
+ -
RE: Where did all the Mac malware go?
bobiroc 1st Aug
@prof123

One correction here if I may. Most of the choice to leave the antivirus to third party was NOT that of Microsoft. If Microsoft's history shows you anything it should show you that ANY time they want to include a new feature or software part to Windows or any other application they are scrutinized by 3rd parties and the law. They got sued time and time again for including things like a web browser and a default basic mail client. When they released Windows defender the Antivirus Program makers through a fit and then threw a fit again when Security Essentials was released. Apple is not subject to the same restrictions as they can include anything they want without having to worry so much about things like Anti-trust lawsuits.

Maybe 10+ years ago or so Microsoft didn't put so much effort into the user experience and into security but that is NOT true today and has not been for at least the last few years since Vista was released. It started with XP SP2 to be honest and took this long to carefully make the changes without making their 3rd party vendors cry anti-trust. They still do but they do not have much of a leg to stand on anymore.
0 Votes
+ -
RE: Where did all the Mac malware go?
prof123 1st Aug
@bobiroc
I was talking mainly about the nineties. The actions MS took to try to control the internet (i.e. Netscape) resulted in the restrictions you are talking about. It was their own doing and as a consequence resulted in the degradation of the product and the user experience. In the rush for profits they released Windows 95, 98, ME... products not built for a networked world. The consequence of these actions can be still seen in their current offerings, where user experience is replaced by endless list of features and unnecessary complexities...
0 Votes
+ -
RE: I was talking mainly about the nineties.
bobiroc 1st Aug
@prof123

What does going back two decades ago prove? I am not absolving Microsoft from some of their business practices in the 90's (two decades ago) as they played hard ball and walked and in some cases stepped over the line. Of course some of that was exaggerated by companies because of Microsoft's share in the business. I firmly believe that if Netscape had its way we would be paying a separate charge for a browser today but now it is a standard part of an operating system and upgrades are free.

You cannot tell me that if Microsoft developed and included or made available for free download an antivirus program in the 90's or early 2000's that companies like Symantec and McAfee would have not sued the pants off of Microsoft? The hard fact remains is that every time a new feature becomes a standard part of computing and Microsoft wants to include that FREE with the Operating system they have to jump through hoops. They get criticized for including those features and criticized for not including others. Meanwhile Apple can include or not include anything they want and get virtually nothing but praise for listening to their customer's needs.

And the only thing really keeping active-x alive is the third party vendors that refuse to update. Microsoft could stop it right now if it wouldn't stop many things from working and anger their developers that refuse to move to modern web technologies.
0 Votes
+ -
RE: Where did all the Mac malware go?
prof123 Updated - 1st Aug
@bobiroc
They didn't have to do downloadable anti-virus, they could have done what Apple has done and make it part of the normal update. In Apple's case, the anti malware updates are totally transparent, the user is not aware when they happen. It is Microsoft's OS and they are responsible for keeping it clean. It is also in their interest to keep the UI experience simple.
0 Votes
+ -
RE: Where did all the Mac malware go?
jgm@... 1st Aug
@prof123 You're serious? Transparently? By ordering their tech support people not to tell callers they were infected or how to remove the product or recommend any software to remove it?

Effectively? The malware folks got around Apple's response within a few days. They stopped when they chose to stop, as the article pointed out. Google may have had more to do with saving Mac users than Apple did.
0 Votes
+ -
RE: They didn't have to do downloadable anti-virus
bobiroc 1st Aug
@prof123

Yes they did. For the same reasons they moved other applications such as their messenger, Movie Maker, PhotoGallery, and others for free download. This was done to appease the companies saying that Microsoft putting these applications on standard forced users to use them and gave no choice. In fact when Microsoft update detected a machine without Antivirus and offered Security Essentials as an OPTIONAL download they got a lot of criticism even then.
0 Votes
+ -
RE: Where did all the Mac malware go?
Cylon Centurion 1st Aug
@prof123

THey do release a scrubber tool every month as part of patch Tuesday. While not a full AV replacement, the tool scrubs the system looking for hard to remove malware.
0 Votes
+ -
RE: Where did all the Mac malware go?
Hallowed are the Ori 1st Aug
@Richard Flude

Wow.... dragging Microsoft into it on the first post. Nice.
0 Votes
+ -
The guy
allspammailhere 1st Aug
is trying to avocate Windows at the expense of the shortcomings of Mac OSX. Who doesn't know that?
0 Votes
+ -
RE: Where did all the Mac malware go?
bezoeker 2nd Aug
@Richard Flude Indeed.
0 Votes
+ -
Message has been deleted.
Bonchucin Updated - 3rd Aug
0 Votes
+ -
Security is a Process
Dietrich T. Schmitz, *~* Your Linux Advocate 1st Aug
Yes, this is a good write-up from Ed.

Let's not let up on the creeps who write this crap and make their lives miserable until they have no incentive to do this anymore.

As Ed knows, security is a process, not a thing.

So, please take all necessary precautions, use Ubuntu Linux, enable your LSM Firefox AppArmor profile, install FF Noscript, and install apps ONLY from your Distribution's repository.

Ubuntu Linux, the safest operating system on the planet.

I stake my reputation on it.
0 Votes
+ -
RE: Where did all the Mac malware go?
root12 1st Aug
@Dietrich T. Schmitz, *~* Your Linux Advocate
Ubuntu, the best. However, OSX is my second choice.
0 Votes
+ -
You can install OSX on Linux--the converse is not true.
Dietrich T. Schmitz, *~* Your Linux Advocate 1st Aug
@root12
Not endorsing such, but OSX is fundamentally restrictive and works against my FOSS principles and belief that users should be in charge of making their own decisions--choice that is.

Linux does that. Choice. And as everyone can readily see, the market has responded (i.e., Android).
0 Votes
+ -
Before everyone tap dances with football cleats
Dietrich T. Schmitz, *~* Your Linux Advocate 1st Aug
@root12
Apple doesn't like if you take their OSX and install it to other devices. Linux can be freely installed on most any device with no reservations.

Choice Folks. Choice.
It would show a level of enlightenment I have yet to see if Ed would write topics about Linux security on different Distros.

Keep hope alive.
0 Votes
+ -
"Choice. And as everyone can readily see..."
Snowy_River 1st Aug
@Dietrich T. Schmitz, *~* Your Linux Advocate

"... the market has responded (i.e., Android)."

I'm afraid that the jury is still out...way out...on that one. While it may be true that Android activation numbers seem to dwarf iPhone activation numbers (something we're not seeing in the tablet market yet, and may never see), there are a number of other sources that point to the fact that it seems that the majority of Android users are significantly not using their phones for data purposes. When Android phones seem to be significantly dominating the market, but web statistics show a dominance from the iPhone, it has to bring up some significant questions...
0 Votes
+ -
RE: Where did all the Mac malware go?
roelandinho 1st Aug
@Dietrich T. Schmitz, *~* Your Linux Advocate

The problem is that unsophisticated users will install just about anything that crosses their path. "FreeTacos.exe? Of course, who doesn't want free tacos?!"

No system is secure if you give an unsophisticated user the privilege of messing it up...
0 Votes
+ -
"I stake my reputation on it."
voyager529 1st Aug
@Dietrich T. Schmitz, *~* Your Linux Advocate

...being as your reputation is evangelizing Ubuntu as the solution for EVERY computing scenario, that's a pretty safe claim to make.

When Serato, Mediashout, Premiere, Encore, Sound Forge, Nero, and Acronis come to Linux (or acceptable substitutes), THEN we'll talk. But just because there are problems on Windows (and OSX, per the article) doesn't mean that Ubuntu is void of any issues of its own - the fact that it doesn't run software on which my livelihood depends is a significantly bigger problem than the fact that I need to run NOD32 on my Windows machine, so your reputation is basically "your needs as a computer user be damned, the solution to your problem is to forego what you need your computer to do". Call me calloused, but that's what your reputation is to me.

Joey
0 Votes
+ -
It's what you don't know that can hurt you
Dietrich T. Schmitz, *~* Your Linux Advocate 1st Aug
@voyager529

I think raising awareness of the intrinsic differences each operating affords is constructive, don't you?

Here's hoping Ed will make an attempt to shed light on key differences between OSX and Linux and Windows.

It would be above-board and instructional for everyone.

Disagree?
0 Votes
+ -
Nero Is There
CFWhitman 1st Aug
@voyager529
Just for your information, Nero exists for Linux. It doesn't have a big following in Linux because of alternatives like K3b, but you can certainly get it for Linux if you want to.

I don't believe any of the other software you mention is available for Linux.

When dealing with sound software, I find that latency issues and the low fidelity of the Windows sound server (you can work around this by bypassing the Windows sound server) can be annoying obstacles to using Windows. Of course in Linux there are Mixxx, Rosegarden, Audacity, and quite a few other pieces of software that many have found useful.

I don't think there is anything really on the level of Premiere for video editing in Linux. It would be nice to see one of the existing programs reach that level of maturity.

I'm not much familiar with Mediashout, so I don't know how the alternatives compare.

I haven't actually used Acronis, but I can do what I need to for disk imaging with Clonezilla. I use it for all the images that we have for quickly deploying new computers at my workplace. Perhaps you have another aspect of the software in mind.
0 Votes
+ -
@CFWhitman
ScorpioBlue 1st Aug
Basically it's a latency attitude of vendor lock-in that MS is so good at doing. You just saw an example of that in @voyager529 and his list of proprietary tools that he's probably used for years and isn't interested in learning anything new.

Free = bad vs. Paying out the a$$ = good

That's the mentality of a closed shop you're dealing with here.
0 Votes
+ -
RE: Where did all the Mac malware go?
noagenda 1st Aug
@ScorpioBlue

... The flip side of that coin is equally true. I have 100s of $ invested in applications that run on OS-X, I'm not about to switch OSes to another unless there is an offsetting benifit.
0 Votes
+ -
RE: Where did all the Mac malware go?
Rabid Howler Monkey Updated - 1st Aug
@Dietrich T. Schmitz, *~* Your Linux Advocate

"use Ubuntu Linux, enable your LSM Firefox AppArmor profile

This is good advice for Ubuntu as IE was sandboxed by default starting with Windows Vista and Safari is, finally, sandboxed by default in OS X Lion. Here's a link with instructions:

https://wiki.ubuntu.com/SecurityTeam/FAQ

Search the page for 'How do I enable or disable the profile?' and note that the CLI is required:

$ sudo aa-enforce /etc/apparmor.d/usr.bin.firefox

Now, I LOVE the command-line. But, the people you're trying to influence won't.
0 Votes
+ -
RE: Where did all the Mac malware go?
Return_of_the_jedi Updated - 1st Aug
@Rabid Howler Monkey

"Now, I LOVE the command-line. But, the people you're trying to influence won't ."

Pisst. Alt + F2 -- then copy & paste will work from the GUI, no CLI needed.

PS. You are too much of a geek to think that it's ever needed.
0 Votes
+ -
RE: Where did all the Mac malware go?
Rabid Howler Monkey Updated - 1st Aug
@Return_of_the_jedi A nice slight of hand.

But, it's still the command-line:

http://cdn.omgubuntu.co.uk/wp-content/uploads/2011/03/Screenshot1-500x312.jpg

Further, the command in the 'Run' dialog would likely have to be modified to something like this (not a simple copy and paste):

xterm -e "sudo aa-enforce /etc/apparmor.d/usr.bin.firefox"

And you've tossed in a keyboard shortcut. On my Windows Vista PC, I get the 'Run' dialog via the 'Start' command button.
0 Votes
+ -
RE: Where did all the Mac malware go?
Return_of_the_jedi Updated - 1st Aug

0 Votes
+ -
RE: Where did all the Mac malware go?
bannedagain Updated - 1st Aug
@Dietrich T. Schmitz, *~* Your Linux Advocate

I'm running Firefox 6 beta with Noscript on my Bastille hardened Mac.

It's as secure as Ubuntu, which is the most horrible Linux distro I've used.

PCLinuxOS is a lot better, IMHO.

Stop trying to force your restricted (to one distro) Linux view on others.

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix