Comments for Technical Conclusions

Comment on The reality of Macs and Malware by technicalconclusions

technicalconclusions — Mon, 07 Dec 2009 19:39:14 +0000

James, thanks for your comments. As you suggest, there are really two concerns regarding malware – delivery and payload. In my opinion, from a security perspective, delivery is the primary concern. If a piece of malware can in fact deliver malware to your system, the payload is irrelevant as you’d have to assume the worst. While any piece of malware is potentially very dangerous, the security implications between a virus / worm versus a trojan are huge. As you mention, root kits are essentially a form of a trojan in terms of delivery. Depending upon the source of information, they are typically classified simply as a trojan. To that end, I wasn’t aware of a true root kit in the wild for OS X.

As I recall, back in 2004, some tried to label the malware known as “Opener” as a rootkit, but that was a stretch to say the least. I’m aware of Dino Dai Zovi’s “Machiavelli” proof of concept, but that’s demonstrating parts of a root kit and also fails the “in the wild” test. Still, there are “legitimate” programs that likely use various root kit methods and kernel extensions that could technically be classified as root kits. From that perspective, I would agree with your correction and will likewise update that one line in my post.

Comment on The reality of Macs and Malware by James Bailey

James Bailey — Wed, 04 Nov 2009 19:57:07 +0000

Further comment. I would make one correction. There are rootkits for OS X. They are typically installed by trojans but the payload itself is a rootkit. They are not particularly dangerous if you follow basic malware prevention procedures but it is inaccurate to say that rootkits for OS X don’t exist.

Rootkits are very similar to trojans in that they generally require administrative rights on the target system to install. They can be written by anyone with knowledge of BSD Unix. They generally don’t require knowledge of OS X specifically. Since much of OS X is open source, the source for the rootkit is readily available. Again, like a trojan, there is little an OS vendor can do to prevent rootkits. Heeding warnings and not supplying administrator credentials is probably all that is needed to prevent this kind of malware.

Comment on The reality of Macs and Malware by James Bailey

James Bailey — Wed, 04 Nov 2009 19:43:30 +0000

Excellent and accurate summary of the virus situation on OS X. Thanks. I’ve bookmarked this for future reference.

Comment on Subpixel font rendering: A difference in philosophy. by VH App Design

VH App Design — Wed, 28 Oct 2009 09:42:27 +0000

Great article – very comprehensive.

Comment on The reality of Macs and Malware by The reality of Macs and Malware « Chicago Mac/PC Support

The reality of Macs and Malware « Chicago Mac/PC Support — Tue, 27 Oct 2009 21:28:10 +0000

[...] The reality of Macs and Malware October 27, 2009 chimac Leave a comment Go to comments Nice article that talks about the malware risk on Macs. Read more here. [...]

Comment on The reality of Macs and Malware by Martin

Martin — Fri, 02 Oct 2009 06:38:33 +0000

Great artical, nice to read, informative and based on facts. Good writing…
Merci beaucoup.

Comment on Ballmer’s “Apple Tax” campaign by Hackintosher

Hackintosher — Tue, 23 Jun 2009 09:24:20 +0000

And now that Apple has reduced its pricing dramatically for its entire range of laptops in this month’s WWDC, the pricing argument is shot to pieces as well, completing Microsoft’s failure….

….. niiiiice, Ballmer. Keep up the monkey imitations and chair-throwing tantrums; you may not have a job at Microsoft for too long, but any ringmaster would hire you.

Comment on Is Vista really that bad? by Bernard Breach

Bernard Breach — Mon, 08 Jun 2009 01:52:17 +0000

I have been using vista for a few year and let me tell u that i love it!! of course, you have to have the computer to power it, i got 4 gig ram and a dual core possessor. It runs, looks, and smells great.

Comment on History of the Graphical User Interface (GUI) by SonOfA

SonOfA — Tue, 21 Apr 2009 20:58:20 +0000

This is a great post. Thanks for the history.

Comment on Ballmer’s “Apple Tax” campaign by Neil Anderson

Neil Anderson — Sun, 19 Apr 2009 17:45:44 +0000

Good article. Amazing that such a large company can have so little clue. But they never really got to where they are by competing. At best, they embraced mediocrity and that was good enough for most people. Times have changed.