MacDailyNews - Where Mac news comes first

 MacDailyNews Poll

Deal of the Day

5 Day Most Commented

Opinion Archive

Current Headlines

Latest Joy of Tech

  • Latest Joy of Tech!

MacNN

AppleInsider

Macworld UK

TUAW

MacRumors

Yahoo! Finance AAPL

iTunes Top 10 Albums

Mac OS X Downloads

Sat, Nov 21, 2009 - 04:00 PM EST  —  AAPL: 199.92 (-0.59, -0.29%)  |  NASDAQ: 2146.04 (-10.78, -0.5%)

U.S. Army enlists Apple Mac for increased security
Friday, December 21, 2007 - 10:19 AM EST

Apple Store
"Given Apple's marketing toward the young and the trendy, you wouldn't expect the U.S. Army to be much of a customer. Lieutenant Colonel C.J. Wallington is hoping hackers won't expect it either," Andy Greenberg reports for Forbes.

"Wallington, a division chief in the Army's office of enterprise information systems, says the military is quietly working to integrate Macintosh computers into its systems to make them harder to hack," Greenberg reports.

"The Army's push to use Macs to help protect its computing corps got its start in August 2005, when General Steve Boutelle, the Army's chief information officer, gave a speech calling for more diversity in the Army's computer vendors. He argued the approach would both increase competition among military contractors and strengthen its IT defenses," Greenberg reports. "Apple computers still satisfy only a tiny portion of the military's voracious demand for computers. By Wallington's estimate, around 20,000 of the Army's 700,000 or so desktops and servers are Apple-made. He estimates that about a thousand Macs enter the Army's ranks during each of its bi-annual hardware buying periods."

"As early as February 2008, the Army is planning to introduce software, developed by Arlington, Texas-based Thursby Software, that will also enable Mac desktops and laptops to use CAC [Common Access Cards systems; heavily used by the military] --a change that should make it easier to get Macs into the service," Greenberg reports.

MacDailyNews Note: Mac OS X has supported CAC since Mac OS X Tiger. More info here.

"Wallington points out that Apple's X Serve servers, which are gradually becoming more commonplace in Army data centers, are proving their mettle. 'Those are some of the most attacked computers there are. But the attacks used against them are designed for Windows-based machines, so they shrug them off,' he says," Greenberg reports.

"Jonathan Broskey, a former Apple employee who now heads the Army's Apple program, argues that the Unix core at the center of the Mac OS operating system makes it easier to lock down a Mac than a Windows platform," Greenberg reports.

Greenberg reports, "The marketing pitch that Apples are inherently more secure than PCs is also largely a myth, contends Charlie Miller, a software researcher with Independent Security Evaluators... 'I love my Macs, but in terms of security, they're behind the curve, compared to Windows,' Miller warns."

Full article here.

MacDailyNews Take: Charlie Miller. All talk and no action; unless he's selling vulnerabilities for profit:

Andy Greenberg reported for Forbes, July 9, 2007, ""In the summer of 2005, Charlie Miller was working in his living room when he discovered a hackable vulnerability in a common species of server software. Miller knew he had found something dangerous. But until he offered his prize to a government agency five months later, he had no idea just how much it was worth. 'I asked for $80,000,' he says. 'When the guy on the phone agreed immediately without consulting his boss, I knew I should have asked for much more.'"

Greenberg reports, "In fact, the unnamed agency eventually bargained the price for the information, an exploitable bug in the Linux server program Samba, down to $50,000. And what did the agency do with its newly purchased security hole? Miller received his check and didn't ask questions. 'They didn't buy it in order to patch it,' Miller says. 'I can speculate that it wasn't exactly used for the common good.'"

MacDailyNews Take: Lovely.

Full article here.

Send us links! Email: webmaster@macdailynews.com

Apple Store Advertisements
iPhone 3G S: From $199. Free shipping.
New 13-inch MacBook: From $999. Free shipping.
13-inch Macbook Pro: From $1199. Free shipping.
13-inch MacBook Air: From $1499. Free shipping.
15-inch Macbook Pro: From $1699. Free shipping.
17-inch MacBook Pro: From $2499. Free shipping.
New Mac mini: From $599. Free shipping.
New iMac 21.5-inch: From $1199. Free shipping.
New iMac 27-inch: From $1699. Free shipping.
Mac Pro: From $2499. Free shipping.
iPod touch: From $199. Free Shipping.
iPod nano: Now shoots video! From $149. Free shipping.
iPod shuffle: From $59. Free engraving. Free shipping.
Apple TV: From $229. Free shipping.

MacDailyNews on Twitter

MacDailyNews app for iPhone and iPod touch

Related articles:
US Department of Homeland Security’s border screening system was crashed by Windows Zotob worm - November 03, 2006
US Department of Homeland Security: patch Microsoft Windows now or risk complete system compromise - August 10, 2006
U.S. Army’s 1,566 64-bit Apple Xserve G5 supercluster can exceed 25 teraflops - September 15, 2004
CCIA wants U.S. Dept. of Homeland Security to reconsider buying ‘insecure Microsoft software’ - August 29, 2003
U.S. Department of Homeland Security says Windows vulnerable to attack - August 01, 2003
Department of Homeland Security chose Microsoft due to time and money limitations - July 21, 2003
U.S. Department of Homeland Security awards enterprise agreement to Microsoft - July 15, 2003
Standard U.S. Army issue laptop too slow? Send in the Apple PowerBook - March 08, 2003

Get a Mac: Viruses, spyware cost U.S. consumers $7.8 billion over last two years - August 08, 2006
Symantec details more security holes in Microsoft’s Windows Vista - July 26, 2006
Symantec researcher: At this time, there are no file-infecting viruses that can infect Mac OS X - July 13, 2006
Sophos: Apple Mac OS X’s security record unscathed; Windows Vista malware just a matter of time - July 07, 2006
Sophos Security: Dump Windows, Get a Mac - July 05, 2006
What Microsoft has chopped from Windows Vista, and when - June 27, 2006
Apple: ‘Get a Mac. Say ‘Buh-Bye’ to viruses’ - June 01, 2006
FBI: Viruses, spyware, other computer-related crimes cost U.S. businesses $67.2 billion per year - February 01, 2006
Security company Sophos: Apple Mac the best route for security for the masses - December 06, 2005
Hackers already targeting viruses for Microsoft's Windows Vista - August 04, 2005
16-percent of computer users are unaffected by viruses, malware because they use Apple Macs - June 15, 2005

Bookmark and Share

Always -- Free ground shipping with orders over $50 at the Apple Store.

Reader Feedback: = registered.
Unregistered users: Feedback from multiple usernames are subject to deletion. Off-topic and posts from suspected astroturfers will be removed.

Dec 21, 07 - 10:27 am Comment from: silverhawk

Charlie Miller is a idiot and Independent Security Evaluators would be out of business if it weren't for windows.

Dec 21, 07 - 10:27 am Comment from: Ampar

Independent Security Evaluators = Ruinously devastated pertinence.

Dec 21, 07 - 10:30 am Comment from: Tom

Sorry Charlie.

Dec 21, 07 - 10:30 am Comment from: Gandalf

Let's hope the US military doesn't take too much of a fancy to them, anyone remember this:

"The Power Mac G4 is so fast that it is classified as a supercomputer by the U.S. government, and we are prohibited from exporting it to over 50 nations worldwide," said Steve Jobs, Apple's interim chief executive officer.

CNet, September 17, 1999

Dec 21, 07 - 10:31 am Comment from: Gandalf

Oops, that should be CNN

Dec 21, 07 - 10:32 am Comment from: peaPod

If I made money securing peecee's, I'd diss Mac's too.

Dec 21, 07 - 10:40 am Comment from: Ampar

"My philosophy? A hundred-dollar shine on a three-dollar pair of shoes."

Dec 21, 07 - 10:46 am Comment from: sn

Be all that you can be, with Apple.

The United States Army: Be Apple Strong.

Dec 21, 07 - 10:56 am Comment from: Ampar

Independent Security Evaluators.
The few, the proud, the maroons.

Dec 21, 07 - 11:15 am Comment from: Heh

Independent Security Evaluators
Your Fear. Our Fortune.

Dec 21, 07 - 11:22 am Comment from: octal

Greenberg's article is wrong about CAC. I've been using CAC with my Mac for over a year. OS X 10.4 and 10.5 have CAC reader drivers pre-installed, and Keychain handles the rest. On my Dell at work, we had to use multiple 3rd party add-ons to Windows in order to get CAC to work. Additionally, Macs can currently perform CAC log-in:

http://docs.info.apple.com/article.html?artnum=304035

Dec 21, 07 - 11:26 am Comment from: Spooked

My Mac was hacked by the US. Military.

Why? Because I blogged certain details about a black bag operation in the Florida Keys involving "american speaking soldiers with funny wires sticking out of their arms" and "bodies washing up on shore" "survivers calling for their mother" (code of some sort)

I kid you not. With all the security issues of Mac OS X over the last year, Mac's only GIVE THE ILLUSION OF SECURITY.

The military has a saying, "if it emits a signal, we can crack it".

That's a fact.

Dec 21, 07 - 11:52 am Comment from: Macromancer

""The marketing pitch that Apples are inherently more secure than PCs is also largely a myth, "

Apple doesn't heavily market this. It's mostly anecdotal information from users.

Dec 21, 07 - 11:59 am Comment from: iamdj

@Spooked:

Not sure what you are trying to say, but it is scary none the less.

Dec 21, 07 - 12:01 pm Comment from: Cubert

@Spooked,
Give us more info, please. How was your Mac hacked? How did you find out? What proof do you have?

Dec 21, 07 - 12:04 pm Comment from: Raymond from DC

Spooked writes, "My Mac was hacked by the US Military." Yeah, but if true it took the resources of a military cyber team to do it. If you were running Windows, it would take only a script kiddie working out of his mother's basement.

General Boutelle's speech calling for "more diversity" shows at least someone understands the danger of a Windows based mono-culture. And if we're talking "mission critical", would you want to rely on UNIX-based OS X, or Windows XP/Vista?

A few offices within the FBI and some intelligence agencies are slowly moving to Mac, but the seriously dysfunctional Dept. of Homeland Security remains overwhelmingly a Windows shop. That is something to keep one awake at night.

Dec 21, 07 - 12:06 pm Comment from: Ampar

"Mac's only GIVE THE ILLUSION OF SECURITY."


I had a feeling that David Copperfield was behind this. There's some serious ganja going around on these threads lately.

Dec 21, 07 - 12:08 pm Comment from: Ampar

"Dept. of Homeland Security remains overwhelmingly a Windows shop."


We are being attacked. Do you wish to retaliate?

. . . . . . Cancel or Allow? Cancel or Allow? Cancel or Allow? Cancel or Allow? Cancel or Allow? Cancel or Allow? Cancel or Allow? Cancel or Allow? Cancel or Allow? Cancel or Allow?

Dec 21, 07 - 12:19 pm Comment from: iDon't

Osama Bin Laden uses a MAC, that is why the he has not been captured even with all the resources of the USA military.

Dec 21, 07 - 12:27 pm Comment from: @macromancer

You say"""The marketing pitch that Apples are inherently more secure than PCs is also largely a myth, "

Apple doesn't heavily market this. It's mostly anecdotal information from users."

I am curious as to where you are getting your information. Are you saying that Macs are easy to hack?

I have to say that every hacker that has ever gotten into a Mac, wheather by application, personally on the machine or by trojan and getting a person to allow the hack has quickly posted their hack and proof.

so why are we not seeing mega hacking on the Mac?????

Just curious. grin

en

Dec 21, 07 - 12:30 pm Comment from: Philip

I almost wish their servers WOULD go down so they can't continue giving orders to slaughter people in Iraq or manage an invasion of Iran, but anyway.

Dec 21, 07 - 12:35 pm Comment from: DLMeyer

Hey, Spooked, maybe you should consider blogging (surfing, etc) from a USER account. At least that would make hacking your system interesting. Now ... perhaps you could provide a little proof that it was a Mac that was hacked and not just a figment of your fevered imagination? Saying it does not make it true, and even the truth is not always what it is purported to be.
Dave

Dec 21, 07 - 12:53 pm Comment from: Chris

Macs don't need third-party software to support CAC cards. OS X supports them out of the box.

Dec 21, 07 - 03:30 pm Comment from: ChrisW357

Quietly working to integrate OS X systems into the military, eh?

Not quietly enough, evidently, if MDN got wind of it.

Me skeptical.

Dec 21, 07 - 05:45 pm Comment from: STEVE

++





PHILLP, You are an idiot. Slaughter people? and what do the muslims do? Bake cookies? Seems like the nice muslims over there like us and want us there. The bad evil ones don't want us there. Seems YOU side with evil ones. What does that make you?






.

Dec 21, 07 - 06:47 pm Comment from: LorD1776

Steve,

That makes him capable of independent thought. Something you apparently aren't.

Dec 21, 07 - 07:40 pm Comment from: I benthere

Steve,

You are the Right one... That a$$ clown forgets the reason why he is free to think like he does....

Dec 21, 07 - 08:20 pm Comment from: @philip

I almost wish their servers WOULD go down so they can't continue giving orders to slaughter people in Iraq or manage an invasion of Iran, but anyway.

Remember, those same servers would be used to manage an Iraq pullout and order our troops home. You can't have it both ways, sir.

Not to mention the mere wish of cutting off communications to your troops should be considered treasonous; soldiers who lose their communications die.

Perhaps the preventable, needless loss of many more American lives is your thing?

Dec 21, 07 - 09:17 pm Comment from: Reclaimer

Seems that George did pay my emails some attention after all.

Dec 21, 07 - 10:17 pm Comment from: MacRaven

An Army of one--Apple.

Dec 22, 07 - 02:10 am Comment from: ron

Bush uses Apple - ouch!

Dec 22, 07 - 04:06 am Comment from: Spooked

@DLMeyer

Check with the Fisherman's Hospital in Marathon Key, Florida. That's where the soldiers were taken and where my information came from. You might have to ask around to catch someone who knows, it was about 3 years or so ago.

The hack came shortly after blogging the info to a another Mac site, a very nice female (operative) befriended me online and trojaned me with a file. I of course double-clicked on it because "Mac's were so secure" yada yada. Didn't require a admin password, so it didn't raise any suspicions at first.

I started thinking it was rare for a woman to take a interest in a guy unseen online, in short order like that, much less send a file out of the blue. (how they got my email addy remains a mystery, perhaps a ISP trace?)

Mac OS X was still rather niche and more secure back then, perhaps not a lot of hacking done on it via remote, so I don't think it was possible to get in that way. I was running a solid wire to the internet, no wireless at the time. I guess they were in a hurry to see how much I knew and who I told so they were sloppy just enough or not good with Mac's yet. Mac's always have been pretty solid, so I double-clicked the file, it wasn't anything but a simple database for Appleworks. I then trashed it.

Well I had my suspicions and had a security expert friend of mine take a look at my machine, he discovered a root level process that was routinely contacting certain "reserved" government IP address range. I just upgraded Mac OS X to a newer version, I think it was Panther, and the machine was fresh install. Never received a file or even downloaded anything beforehand. So I know it came from that Appleworks database file.

How the exploit worked, how it got root remains a mystery. (now we know of course it went public 2 years later)

We just wiped the hard drive, switched ISP's and went on with our lives.

So there you go, one hacked Mac. They got root right away. Sure it took a little help from me, but I unboxed the machine, turned it on and connected to the internet too. So perhaps if I didn't do that it wouldn't got hacked either right?

One should expect to use a computer as normal without any exploits occurring, including downloading and opening files without it gaining root access.

Dec 22, 07 - 10:18 am Comment from: LorD1776

ron,

"Bush uses Apple - ouch!"

Bush uses everybody. It's what he does.

Dec 23, 07 - 06:49 pm Comment from: Reminder

Oh, no, we're not going to have any casualties.
--George W. Bush

discussing the Iraq war with Christian Coalition founder Pat Robertson, as quoted by Robertson

Dec 23, 07 - 08:13 pm Comment from: LorD1776

Geez, and between them not two brain cells to rub together.
I'll bet that was one hell of an intelligent conversation:

Pat: Georgie, you need to kill everyone of those evil heathens.
God told me to tell you. He's depending on you, son.

George: Really Uncle Pat? Heh heh! Well, I won't let y'all down,
bygolly. I'm yer man. Uh, who do I gotta kill?

American leadership at it's finest.

Dec 25, 07 - 09:50 am Comment from: Beeblebrox

"discussing the Iraq war with Christian Coalition founder Pat Robertson, as quoted by Robertson"

This is a myth and, were you talking about the Mac you would call it FUD. Stop repeating lies.

And to the traitor Phillip, in case you have not been able to get news for the past 4 months, we are winning the battle in Iraq. Furthermore, we are clearly winning the war against Islamic Jihadism.

Wake up dude.

Dec 25, 07 - 04:18 pm Comment from: ransacked window

@Beeblebrox
Nobody is a traitor for saying that they don't want American soldiers dying, or for just speaking their mind.

mw national, as in I have enough National pride to speak my mind, and think for myself.

Reader feedback page 1 of 1 pages:

Always -- Free ground shipping with orders over $50 at the Apple Store.

Add Your Feedback:

Register or Login

Name:

Email: (optional)

Emoticons | Allowed HTML Tags

Remember my info   Notify me of follow-up comments?

Please enter the "MDN Magic Word" you see in the image below: