Comments on: Best from Apple: Security http://theappleblog.com/2005/01/26/best-from-apple-security/ TheAppleBlog, published by and for the day-to-day Apple user, is a prominent source for news, reviews, walkthroughs, and real life application of all Apple products. Sat, 22 Nov 2008 07:18:56 +0000 http://wordpress.org/?v=2.6.3 By: The Apple Blog » Zotob Worm Plagues Windows. Microsoft “Mobilizes War Rooms” http://theappleblog.com/2005/01/26/best-from-apple-security/#comment-15614 The Apple Blog » Zotob Worm Plagues Windows. Microsoft “Mobilizes War Rooms” Wed, 17 Aug 2005 07:06:31 +0000 http://www.theappleblog.com/2005/01/26/best-from-apple-security/#comment-15614 [...] est security patches should be doing OK. Operating system vendors need to distinguish between “Client” and “Server” distributions of t [...] [...] est security patches should be doing OK. Operating system vendors need to distinguish between “Client” and “Server” distributions of t [...]

]]> By: chris holland http://theappleblog.com/2005/01/26/best-from-apple-security/#comment-946 chris holland Wed, 16 Feb 2005 22:04:43 +0000 http://www.theappleblog.com/2005/01/26/best-from-apple-security/#comment-946 Anonymous guy: Thank you for your insightful remarks. I agree with you, it would appear they get it now. I think. I've slightly updated relevant portions of the article by placing some statements in the past. Anonymous guy: Thank you for your insightful remarks. I agree with you, it would appear they get it now. I think. I’ve slightly updated relevant portions of the article by placing some statements in the past.

]]> By: Anonymous http://theappleblog.com/2005/01/26/best-from-apple-security/#comment-526 Anonymous Wed, 02 Feb 2005 09:05:01 +0000 http://www.theappleblog.com/2005/01/26/best-from-apple-security/#comment-526 Chris, A good article but I noticed a few things right off the bat that aren’t quite correct. If you bought a computer from Dell today and plug it straight into the net you would not get Sasser as the PC would be patched and the XP firewall would be on by default. I agree that it took MS too long to realize services need to be off by default, but in all honesty, I think they get it now. Windows Server 2003 machines were not infected by Sasser or Blaster, a sign that since MS started their “Trustworthy Computing” initiative, they’ve made some positive changes. SP2 for XP has also made some great changes, and comes with a much better firewall than OS X and has stack buffer overrun protection, which OS X also does not have. I think Apple has a great security record and I applaud their foresight in OS X (not making default user root and having 0 open ports by default). But MS has actually done some great things in the past few years that I’m very pleased with. Both companies have a way to go, in my opinion. I periodically see buffer overrun patches in both OSes (come on, it’s 2005 guys!) but I’m happy with the security on both of my OS X and XP boxes. Chris,

A good article but I noticed a few things right off the bat that aren’t quite correct. If you bought a computer from Dell today and plug it straight into the net you would not get Sasser as the PC would be patched and the XP firewall would be on by default. I agree that it took MS too long to realize services need to be off by default, but in all honesty, I think they get it now. Windows Server 2003 machines were not infected by Sasser or Blaster, a sign that since MS started their “Trustworthy Computing” initiative, they’ve made some positive changes. SP2 for XP has also made some great changes, and comes with a much better firewall than OS X and has stack buffer overrun protection, which OS X also does not have.

I think Apple has a great security record and I applaud their foresight in OS X (not making default user root and having 0 open ports by default). But MS has actually done some great things in the past few years that I’m very pleased with.

Both companies have a way to go, in my opinion. I periodically see buffer overrun patches in both OSes (come on, it’s 2005 guys!) but I’m happy with the security on both of my OS X and XP boxes.

]]> By: Pelle Svensk http://theappleblog.com/2005/01/26/best-from-apple-security/#comment-475 Pelle Svensk Wed, 26 Jan 2005 17:57:06 +0000 http://www.theappleblog.com/2005/01/26/best-from-apple-security/#comment-475 Well put! It's been a long time since I've come across such a good article. Keep it up! / pelle Well put! It’s been a long time since I’ve come across such a good article. Keep it up! / pelle

]]> By: l0ne http://theappleblog.com/2005/01/26/best-from-apple-security/#comment-474 l0ne Wed, 26 Jan 2005 17:06:56 +0000 http://www.theappleblog.com/2005/01/26/best-from-apple-security/#comment-474 We mustn't forget that: - administrators are regular (read: limited) users, and only by providing an administrator password tasks may be run with root privileges; - Mac OS X has an helpful and complex Security Server that is native to it and allows application to both manage in-application tasks and ask the user for a password with a common user interface (without providing the application itself with the password, of course :D). We mustn’t forget that:
- administrators are regular (read: limited) users, and only by providing an administrator password tasks may be run with root privileges;
- Mac OS X has an helpful and complex Security Server that is native to it and allows application to both manage in-application tasks and ask the user for a password with a common user interface (without providing the application itself with the password, of course :D).

]]> By: Josh Pigford http://theappleblog.com/2005/01/26/best-from-apple-security/#comment-473 Josh Pigford Wed, 26 Jan 2005 15:36:40 +0000 http://www.theappleblog.com/2005/01/26/best-from-apple-security/#comment-473 I've always thought the IE Windows Update utility on PC's was a bit risky...especially considering all the security issues with IE. I’ve always thought the IE Windows Update utility on PC’s was a bit risky…especially considering all the security issues with IE.

]]>