MacDailyNews - Where Mac news comes first

As Mac gains ground, so the Sophoses of the world lose revenue.

Firewall off.

There are probably a few viruses on my iMac. I have a cold and I touched the On/Off button in the back of the case this morning.

the more sure I am that I don't need to buy their software.

@Gilles: Me, too. I expect my iMac to start sneezing and coughing at any moment.

Feb 18, 08 - 03:03 pm Comment from: Spark

Firewall? What's that

Feb 18, 08 - 03:05 pm Comment from: Jamie

sick of hearing people still peddling the "macs aren't targeted cause no one uses them" bullshit

@ Beryllium: I suggest you open a picture (preferably in JPG format) of an Aspirin on the desktop and the sneezing and coughing will stop.

Feb 18, 08 - 03:09 pm Comment from: Tiger Leopard

Just another sad business attempt to spoil the big wave of Apple's popularity and security.

I agree with my friend Jamie D.

Bullshit indeed!

So my Linksys router has a built-in firewall. Why do I need to have OS X firewall turned on?

Feb 18, 08 - 03:17 pm Comment from: Petey

More FUD to scare computer users to part with their money.

Move along... nothing to read here.

I'm sure the hacker that writes a virus for Mac OS X will become world famous.
I'm also sure the companies that sell the security software are working on it too. How best to sell security software, find a virus.

I had a firewall up, but the latest Leopard requires me to "Allow all incoming connections" and to trust Mac OS X to determine which programs to allow. I had to do this to get my Slingplayer software to work over the WAN, but when I tried to specifically allow my Sling app, it wouldn't work.

Feb 18, 08 - 03:30 pm Comment from: JAYGEE

I turned my Macbook firewall on the second I got it. Can never be to careful.

Feb 18, 08 - 03:31 pm Comment from: MizuInOz

Firewalls - we don't need no stinking Firewalls...

Feb 18, 08 - 03:34 pm Comment from: ken1w

That's weak. Sophos is saying Mac OS X is vulnerable because 14% more of its site visitors feel that Mac OS X will be "targeted more in the future." Besides using the opinion of non-experts as fact, what does that mean? Targeted? As opposed to actually "exploited"?

If you can't find real world evidence of vulnerability, find something vaguely related and say its relevant. It reminds me of the time security "experts" said Mac OS X was vulnerable because Apple did not hire a security "czar." Or the widely report and debunked use of third-party wireless USB adapter drivers (which most Mac users would not need) to claim Mac OS X was hacked.

Whenever we get something like this, I feel MORE secure using a Mac. It shows the security fear mongers cannot think of anything better.

Feb 18, 08 - 03:35 pm Comment from: HMCIV

Thanks for the warning Sophos. BTW did you notice your Windows boxes have the digital equivalent of BIRD FLU??? And if you're using wireless routers, that means it's airbone.

I don't know anyone who uses a Mac that has had a virus, on their Mac that is. I've heard all kinds of talk of the possibility but no reality yet.

An aside, in the last 2 days I've been able to video chat (iChat) with 3 people. One was my mom who is nearly computer ignorant. It was really cute because she had a look of astonishment about what was happening. I would buy a Mac, if we didn't already own 5 already ( 4 at work ) just for the iChat video. Got two people to switch, both of which were part of the 3 I mentioned. I love this laptop.

I know I'm preaching predominately to the choir here but the 24" iMac totally rocks.

Feb 18, 08 - 03:47 pm Comment from: Timbo

@Original Shiva

Right on!

Feb 18, 08 - 03:52 pm Comment from: smackman

slow news day huh?

so just what's up with the free clamXav?

Feb 18, 08 - 04:07 pm Comment from: Mr. Reeee

When will these people give it up?

If or WHEN an actual Mac virus is reported, by more than ONE "researcher", THEN Mac users will consider buying virus prevention software.

ONE thing I WILL guarantee, with the history these Sophos clowns have of "warning" us over and over and over again of impending viral disasters ready to strike we "unsuspecting" Mac users, for NO reason, I will NEVER buy ANY product these people sell.

EVER.

Count on it, idiots.

Well, we all think mac os X is a target. The question is will it continue to be a hard target. I think this is the case, and I'd sure be relying on Apple's solutions to malware before I installed 3rd party stuff.

I long ago tested my Mac through the Gibson Research site (grc.com) to check my system's openness on the net (I'm accessing via DSL router). Result: no ports seen. Zero. I'm effectively invisible.

I also recall the "I love you" virus that was flooding our agency years ago. My own desktop was an IBM 365 PC running Solaris most of the time (and NT in a small partition in case my PC was audited). The virus appeared in my (Netscape) email. No effect. The Mac is similarly immune to such malware.

Finally, a colleague asked that I look at his very troubled Windows notebook. I did similar work on that same box two years ago, and found a dozen pieces of spyware. His system is now so messed up I can't even get in to do diagnostics. He's had enough; he's looking to buy one of my spare Macs.

I paid $ 200 to a guy in a bar, for a "Special Anti-Mac-Virus Rock".
Easiest install ever - This special stone just sits on a shelf near my Mac.
Best $ 200 I've ever spent. It works perfectly - I have never had a virus on my Mac since I bought this rock.
My only regret is not buying two rocks, just so I'd be doubly protected.

Feb 18, 08 - 04:43 pm Comment from: ericdano

Experiment: Two computers, Vista and OS X 10.5.2. Have them connected to the internet without a firewall, and see which gets hacked or gets a virus first.
My money is on OS X.

Feb 18, 08 - 04:48 pm Comment from: Hm...

Good for the Sun. Thanks to them for doing some homework instead of the media's usual "Oh, my God! Mac's are in danger!"

Feb 18, 08 - 04:50 pm Comment from: qka

@ montex
So my Linksys router has a built-in firewall. Why do I need to have OS X firewall turned on?
I too have a Linksys router. However, I have found that the OS X firewall blocks things Linksys does not. You cannot have too much protection.

As for MDN turning their firewall off, that's their choice. Me? I've got the OS X firewall turned on. You can never be too sure.

@ MattyG
so just what's up with the free clamXav?
There are no Mac viruses at this time. If and when there are, hopefully ClamXAV will have updates to stop them. So, for the time being, you do not need to run it constantly. That said, I have had ClamXAV find Windows viruses in files. So if you share documents (and who doesn't), it helps to protect your unenlightened (Windows) associates. I don't have it operating constantly, but rather perform I perform scans overnight, on occasion overnight, mostly out of curiosity. However, it frequently doesn't find anything on my system.

Feb 18, 08 - 04:52 pm Comment from: Rip Ragged

Hmmm. Yup. Y'all better go get some anti-phishing software.

Actually, there's a piece of hardware that will help protect you from phishing attacks. It's a 24"x32' poster that says in big letters, "Don't Be a Dumbass."

'Course it won''t do any good if you click the links on every spoof PayPal and Ebay mail you get, but it's a start.

In their defense, Sophos does say that the Windows malware threat is much much worse than the Mac one.

They also make the point that the biggest vulnerability is not to be found in the OS, but in the person using the computer. Now the motive that is driving Windows cybercrime (money) is also driving some to write malicious code for Macs, things could get more serious. From seeing my brother-in-law using his computer I would worry about Mac users making the same mistakes as Windows fans.

Sophos also don't appear to sell their Mac products to consumers - so I don't think this is about hyping sales as some are assuming.

@MissyPants

LOL! Do you think any rock would do? Like is it a quality that all rocks possess or was it a special rock? I wonder if I could buy some software to affect the magnetic field of my PB G4 so that I could set a rock on it and have it be transmuted. I'd pay $200 for that!

MW: We could start a "movement"!

Firewall is on on my Mac…

and so is the CRAPDetector.

They polled their site visitors who felt like the the Mac would be more vulnerable this year?! Hugh? Well, if we were at 0% vulnerability last year, then I guess this year, some Mac Doofus might post their admin password on the web or something and that would make us more vulnerable.

Whatever…

Feb 18, 08 - 07:25 pm Comment from: donnie

@ Missy Pants, You Rock!

I'm going to find a picture of a trojan horse for my desktop so I dont feel so left out

http://macdailynews.com/index.php/weblog/comments/12484/

Just make sure it’s not this JPG or it could lead to arbitrary code execution.

Even heard of Leap-A? http://virus.wikia.com/wiki/Leap

I can just picture the look on your moms face when you tell here about the malicious code your sending through iChat

With a name like Missy Pants, unless my imaginationis incorrect, you could just visit one or two countries I know and get lots of free rocks. Stoned to death, in fact, in a religious experience. No more viruses. Lots of bacteria after a while though...total physical breakdown.

Seriously though, here's a marketing idea for a retailer visited by lots of Windows users considering switching: "Free Anti-Virus Hardware" - a small rock as described.

>>Firewalls - we don't need no stinking Firewalls...<<
Hmm..... I don't think you can be too careful. OpenBSD or FreeBSD, I think you can safely call that these safest OS's, have included one of the best firewalls. I don't think they did that just for the fun of it. I think we need firewalls.... I for one have them enabled on my router and my Linux and FreeBSD servers and yes also on my MacBook Pro.

@Missy Pants....please tell me you didn't accidently drop the S from the first part of your name.....

I appears that everyone from Sophos looks at internet porn...hence the hyper-concern about the OSX/RSPlug. And I have also carried out my own unscientific poll and it predicts than in a few years my left nut will be bigger than my right. Sheeeeesh!

Please please Mac users... install some anti virus software... especially if you use Entourage and other Office apps. We don't want your Macs acting as vectors to distribute nasties to the Windows users.

We can't afford to have Mac users propagating things through Office attachments while they themselves remain undisturbed.

FUD FUD FUD FUD!
Anti-Mac security FUD marches on! Historically this rubbish has been perpetrated since August of 2006, started by none other than the developer of the single worst anti-malware application for Mac: Symantec. At the time their Norton Anti-Virus was well known to be a buggy POS. So our of desperation they began the FUD march that continues on even today. And what, oh what, has come of all this TERROR!!!!???? One boring social engineered porno trojan. And you can grab a free cure for it over at the MacScan website.

Ignoring the nonsense from the profit making anti-malware community, here are some helpful odds and ends for the security conscious:
1) ClamXav is totally free, has almost daily updates, and is all any Mac user needs to find and remove Microsoft related malware, oh and that porno trojan for Macs too. I personally prefer the implementation of CLAM that can be found in Leopard Cache Cleaner. It is dirt simple to use, part of an excellent utilty.
2) Little Snitch is what I call a reverse firewall. You can control ever call from everything on your Mac going out to your local network and the Internet. No more phoning home apps. No way can your computer perform zombied tasks, should such a thing ever happen to a Mac in the first place, (and no, despite lies to the contrary, it never has). I paid for Little Snitch and enjoy using it.
3) The Apple AirPort Base Station N can be totally stealthed and encrypted while remaining fast. Great hardware.
4) Every Mac has its own firewall.
5) 1Password: This is IMHO the best and easiest shareware extension of the KeyChain system already in Mac OS X.
6) Encrypted Disk Images: Make yourself an encrypted, password protected SparceImage inside Disk Utility and store your vital, important, secret stuff in there. No way is anyone breaking in. Tiger has 128 bit encryption, which takes a lifetime to crack, and Leopard has 256 bit encryption, which god couldn't crack.
- - And there are even more inexpensive options at your disposal. The basic concept is that you don't need no schmantzy expensive pay-every-year-for-updates Sophos, Symantec etc. stuff to keep your Mac secure.

Oh, and don't buy that moronic 'security by obscurity' myth the Windows shills pull our of their nether regions. If you compare the number of malware in the history of the Macintosh to the number of malware for Windows on a per user basis there are over 150X more malware, per user, on Windows than on Mac. Explain that by massive number using the obscurity myth. You can't.

Feb 19, 08 - 07:33 am Comment from: -hh

Here's a funny one for you:


Found at:

<http://virus.wikia.com/wiki/Leap>


Sophos News, "79% believe Mac will be targeted more often in wake of Leap-A Mac OS X worm". 2006.02.17



Gee...how did that prediction from 2 years ago fare?


-hh

Supposing we get hit by a brand new deadly virus or trojan, what guaranty do I have that Sophos antivirus will be able to recognize and delete this virus?

Are you all simply missing the point? Whether it be Sophos, Symantec, or the FOSS team behind CLAM, there is a reason for this. Someone mentioned that the vulnerability exploited by OSX/RSPlug was not an OS vulnerability...?? Sorry? Did I miss something here? Is there a Mac out there that doesn't have Quicktime? Or Safari? It is ignorant to believe OS-X doesn't have any vulnerabilities (Did anyone else download a 187 meg patch last week?). The argument Sophos makes is that malware authors seem to have taken a new interest in the Mac, and that it may be prudent to consider security when using a Mac. The Mac market share is not large, and unlikely to be a major profit center for anti-virus vendors. But it is becoming large enough to help the criminals of the world p0wn more stable unix-based machines that can be zombied far more easily into decepting everyone. The Mac is a great platform to "own" as it includes many base level networking tools and a fully-functional shell. I won't debate the value of AV or other protection, but to pretend you are invulnerable as a Mac user to me seems silly. I am a happy Mac user, have not had an infection yet, but still practice safe computing. Remember: Even the Amiga had viruses....