A fellow by the name of Kevin Finisterre has been posting OS X security holes and bugs on his website every day. Some aren’t too happy that Finisterre is doing this as it could let otherwise clueless attackers know what to look for when trying to penetrate an OS X box. But Kevin thinks he’s doing the right thing. He says that OS X users are lazy and don’t care about security, which is completely untrue.
It’s not that we don’t care about security (we do), it’s just that we don’t worry like Windows users have to. We have no viruses going around, we hold only a small market share, and our OS is safe to begin with out of the box. Perhaps if Mr. Finisterre stopped posting security holes for the public to gawk at, we’d all be a bit safer instead of acting like paranoid jackasses.
Are you not suppose to report security holes? I thought if you “some how stumbled” on a security hole you were suppose to let people know about it so patches could be made for it.
Security through obscurity??
I don’t think that’s the good path to follow…
I have to disagree with you on this one, Vince.
As someone that works in a Mac shop, I do have to worry about security for Macs just the same as the few Windows PCs that I have to support. I have also found that Mac users are more careless with regard to security. I just ran a software update on a Macbook Pro that had nearly 25 security patches that needed to be installed despite repeated communications for employees to update their systems. I have noticed Mac users just randomly open attachments or files from unknown users/sites with wanton disregard.
I also read that Apple has historically been slow to respond to security issues when reported surreptitiously and therefore many of these security experts have put the holes out to the public eye to ensure a more rapid response by Apple. And if you are a hack, chances are that you are already aware of the hole or could find it if so desired.
This isn’t meant to be a knock on Apple rather its a misconception that is largely pushed by Apple. The reality is that no computer or OS is completely secure.
yeah, don’t tell me what the holes are, and there will be no holes is about as thick headed as you can get. and Mac people generally are less saavy when it comes to security and other PC things because mac has managed to make things so easy for most of them.
it’s nothing to be ashamed of…
and, not ALL mac users are technically clueless.
except, in this case, it seems like cluelessness is the banner you’re trying to fly. “Don’t let me know!”
brilliant. we won’t let you know when a hacker finds a hole and installs trojans on your system either.
feel better?
the only safe computer is a type writer. ;-)
if only they had softer keys.
Well,
Its about time you smug MAX OSX users had a taste of how we poor PC slobs feel. There are dozens of sites dedicated to publishing the bagillion security holes in Windblows. While showing the thief where the key is hidden under the mat has its problems, it has to be done when even the OWNER doesn’t know about that “hidden” key.
“We have no viruses going around, we hold only a small market share, and our OS is safe to begin with out of the box.”
If your OS is safe to begin with, how is it that this gentleman can post security holes and other bugs DAILY? hmm?
>Perhaps if Mr. Finisterre stopped posting security holes for the public to gawk at,
Being open about security issues are the only way to get them fixed. I wonder if you will take the same attitude when someone posts Vista holes or if you we will be hearing about how insecure it is.
>and our OS is safe to begin with out of the box.
I’d call it safer. Myself, I’ve downloaded lots of OS X security patches.
For my windows machines I don’t worry about security that much because I’m not stupid enough to open unknown things or visit dicey websites. Windows machines are easily more insecure but if you are not careless there is no reason you need to be a paranoid jackass about its problems either.
“Its about time you smug MAX OSX users had a taste of how we poor PC slobs feel. ”
Which is the entire content of this creep Finistere’s whole publicity-seeking effort. Yes, Mac users tend to be sloppier than Windows users about security, because there’s no price to be paid yet.
The MOAB resulted in 2 security updates by Apple. The rest of it? Crap. Guess what? If you give a bad person a user account, he can screw up your system. Well, he can also hit it with a brick, or steal it, so we haven’t learned much, have we?
I have a hardware firewall. I apply the frequent Apple patches promptly. I use Virex to scan new software. I even downloaded a root kit detector the other day. Guess what? Didn’t find anything.
The real point is, if you’re lazy about security on the Mac, you’ve paid no price. If you’re diligent, you’ve paid no price either, except you’ve spent a certain amount of time doing things that don’t turn up anything. Sooner or later, there will be a problem, and you’ll be happy. That is, of course, what you want.
Oh, but some publicity hound who publishes zero day exploits — which should qualify as selling burglar tools, and earn you a trip to the jail — or is that gaol — is a hero. No, he’s not.
So wait… if there are security issues, you would prefer that no one learn about them?
Do you also think that sticking your head in the sand means that your problems don’t really exist? Get real. This guy’s doing you a fucking service by making sure that your weakpoints are known by everyone. This way, Apple’s hand will most likely be forced.
Or would you just prefer to be hit for massive damage?
This is pretty funny.
Nearly the funnies thing I’ve ever read on your site. I know you have some… preferences. Such as ps3 over xbox360 or Wii. And I know your a mac user, which is why I laughed so hard when I read this.
But in reality, if the computers are going to be as expensive as they are, Apple does need to take security breaches into consideration as the “need to fix” section of their ‘to-do’ list.
honestly… very funny!!!
@webonics and @MockingBirdtheWizard and @Jim H
and kudos to you.
I assume this was sarcasm, in which case it was quite funny.
Incredibly boring. Vince, look for another job.
test