Paul Thurrott's SuperSite for Windows
Home > Type > News > About Macs and AV software

About Macs and AV software

Dec. 3, 2008 Paul Thurrott | Paul Thurrott's Supersite for Windows

I’ve gotten a silly number of emails from people regarding a recent story where Apple was purportedly recommending that Mac users install multiple anti-virus (AV) solutions. This was seen as pretty humorous, I guess, given the Mac’s security aura and the fact that many of Apple’s commercials deal with supposed virus problems on Windows.

But I didn’t post anything.

And today comes news that it was all a mistake.

"We have removed the KnowledgeBase article because it was old and inaccurate," Apple spokesman Bill Evans, told Macworld. "The Mac is designed with built-in technologies that provide protection against malicious software and security threats right out of the box.”

So here’s the thing. If you actually read the original note, it referred to “Mac OS” not “Mac OS X.” Apple never refers to Mac OS X as “Mac OS.” So this read like it was referring to the company’s classic, pre-OS X operating system. Which, apparently it was.

Also, I would say that while I don’t use OS X regularly anymore (who would with Windows Vista and 7 around?), I would never install AV on that system, ever. And that’s true even if I were using it 24/7. It may not last, but for now at least, Mac users don’t need AV. That’s the simple truth.

Put simply, I didn’t post about the original AV story because I didn’t think it was newsworthy. Funny, maybe, but then it didn’t feel right either. And I guess it wasn’t.

Discuss this Article 118

mikegalos@msn.com
on Dec 3, 2008
smiddlehurst The Windows C2 rating was done for the operating system. You're right that it's not a test of the network. It's also not a test of the building the computers are in or the physical access requirements or any other issues. It's just what it says. The operating system is considered secure enough to be used in a C2 certified security environment. Which is something no other commercial operating system can say. Period. Feel free to list any Apple OS that passed at C2. There have never been any. Feel free to list any commercial Unix that passed at C2. There have never been any. Feel free to list any open source operating system that passed at C2. There have never been any. Now. Knowing that, care to explain how operating systems that couldn't pass C2 are more secure than one that could?
gfryesc1
on Dec 3, 2008
Since he asked, exercising my capability of choice, I choose to use OSX10 with Windows Vista and Seven around. Makes the most sense to me and it makes Paul no different than any other partisan fanboy of either the Mac OS, or anything else. Dealing in absolutes is not the hallmark of a rational mind.
DRWAM
on Dec 3, 2008
Seven beta in January? What about public beta?
mikegalos@msn.com
on Dec 3, 2008
btw: The reason I say "commercial Unix" is because I believe there were two "government use only" specialty stripped down Unix-based products produced by Mitre Corporation and SUN that were rated C2 but were never available to anyone but the US Government.
robertsjoe
on Dec 3, 2008
"Also, I would say that while I don’t use OS X regularly anymore (who would with Windows Vista and 7 around?)" Who would? Someone with taste. Someone wanting a better OS. Someone that's not running a pro-Microsoft fanboy blog called Supersite for Windows?
robertsjoe
on Dec 3, 2008
I hate to say it, but for the first time in a very long time Paul is right. Mike and the rest of you followers of the Evil Empire are wrong. @mikegalos: Where are you chiming in here actually saying that you think that Paul is wrong? Instead you say you agree with @tayme. Nice way to avoid flack from your master.
robertsjoe
on Dec 3, 2008
Truth be told, Windows users are simply jealous that their OS is such a magnet for viruses and spyware that they continually spurt FUD about how OS Xers will get caught because they don't run AV, blah blah and blah. Truth be told, we simply do not have to and gain nothing from doing so. Go try the same on Windows and watch it go up in flames. "Vista, now not as insecure as Windows XP (But still damned bad)" (tm) So Microsoft fanboys, get over it and accept that you it's your lot in life to be burdened with AV software.
robertsjoe
on Dec 3, 2008
Look at all you Windows users getting all worked up because you've spent your lives in the threatening shadow of viruses and spyware that you can't accept that there are safer options out there. What a sad, sad lot you all are.
Mum
on Dec 3, 2008
"I don’t use OS X regularly anymore (who would with Windows Vista and 7 around?)" Cheap trolling, nothing more. Every time Paul calls what he does "journalism" I get deeply offended.
robertsjoe
on Dec 3, 2008
@mum: Well you don't come here for the "journalism" do you? It's more like switching on to Fox News for the biased "journalism" than anything else. If it's unbiased and serious, then look elsewhere. You have a chance of less biased commentary if you read the Slashdot comments for pro-Microsoft stances.
robertsjoe
on Dec 3, 2008
Part of the problem is the number of Windows users going to dodgy sites and picking up viruses. Lots of Windows fanboys going to pr0n sites helping drive the AV industry.
tayme
on Dec 3, 2008
School must have let out...I see our resident zit faced teenager is here. What, no band practice tonight, robertsjoe? --tayme
tayme
on Dec 3, 2008
@robertsjoe - What don't you understand about this being an Information security issue and not an OS War issue? I guess that they haven't begun to teach true system administration in the 9th grade where you go, huh??? --tayme
robertsjoe
on Dec 3, 2008
@tayme: You'd better go and make sure your anti-virus software is all up to date. You don't want to get caught out - especially running such a magnet of an OS for viruses and spyware. Vista 2 - now with more anti-virus support.
tayme
on Dec 3, 2008
It already updated automatically...on my XP, Vista and 2 OS X (1 Tiger and 1 Leopard) machines...but thanks for thinking of me. You see, I take info security seriously, because I am a realist with a couple of decades of experience...you are obviously as I described. you might try using the school's computers so that you can post during lunch and library time. Of course, they might have fw rules that don't let you visit certain sites or sites that have adult language such as this one does at times...or they might only allow certain sties to be browsed to...but if you are good, you can find a way around that on a bug ridden Vista or XP machine that is probably at use somewhere in your school...right? --tayme
robertsjoe
on Dec 3, 2008
@tayme: Obviously you are not sure of the sites you visit or have doubt in your own abilities with computers to know enough that you need to run anti-virus. Either that or it's just that you're running Windows.
DRWAM
on Dec 3, 2008
Wae, I'm about to plug in my 1TB Seagate FreeAgent Pro. I'll let you all know if it's good or not.
shark47
on Dec 3, 2008
I'm convinced now that robertsjoe is the same old bonch.
tayme
on Dec 3, 2008
@robertsjoe - Nope, I know exactly where I go and usually have a good idea of the route taken to get there...like I said, I am a realist. You are hopeless. I'm done baiting you for now. It was so easy too! I enjoyed it! You enjoy school tomorrow...remember, the weekend is coming. You'll be able to be in the basement for hours on end posting on Paul's site from your daddy's iMac. --tayme
shark47
on Dec 3, 2008
"Seven beta in January? What about public beta?" Oh my God! Seven delayed? All because Paul wrote that unflattering article about simple v. easy? And that after they gave him a free laptop? Tssk, tssk.
mikegalos@msn.com
on Dec 3, 2008
Shark Oh no! We all know the January public beta was delayed until January to handle Randall C. Kennedy's compaints. Does this now mean it's going to be delayed even further, maybe even until January by Paul's issues? Wow. One or two more of these delays and it won't be available until January. :-)
DRWAM
on Dec 3, 2008
I wasn't posting about a delay. I just read that a beat was probably coming in January and never knew of any expected date. It mention disc for a conference, so assumed that it was not a public beta. I was just wondering if any of you guys knew when a public beta [for my $400 Vista laptop] would be available. I did not read of any prior promised dates, so I assume that there is no delay. How can there be a delay if MS did not announce a beta release or public beta release date? OT. This FreeAgent Pro ext HD lights up like a christmas tree. All the yellow in the ads is led [I thought it was going to be paint]. Pretty but possibly annoying.
DRWAM
on Dec 3, 2008
One other thing. I guess is more of a riddle to Mike. Are you ready? Amalga
mikegalos@msn.com
on Dec 3, 2008
DRWAM A pre-beta release was given to PDC attendees and it was announced that the Public Beta would be in early 2009. The jokes about a slip were due to Randall C. Kennedy from Infoworld making a complete idiot of himself by claiming that the beta (announced for Early 2009) was being delayed until Early 2009 as a result of Microsoft going back to the drawing boards to resolve his issues with the OS. Later his editor, trying desperately to save any shred of reputation Infoworld had left, claimed that the posting was a joke that nobody got. We discussed it mostly in the topic "Windows 7 public beta in 2009 ... as previously announced" which is at http://community.winsupersite.com/blogs/paul/archive/2008/11/25/windows-...
mikegalos@msn.com
on Dec 3, 2008
DRWAM Amalga looks pretty cool. Any take from the medical community?
DRWAM
on Dec 3, 2008
Thanks Mike. I never read the article. I glanced at one today stating that a beta would available at some developer conference in January and was wondering if a public beta would shortly follow. I need more toys and Windows 7 sounds like a good one for that laptop. It may be a little over my head, but I like a challenge. I hacked my iPhone last weekend and need more. Especially when I work out. I take 3 to 5 minutes in between sets [ it should be shorter if not power-lifting, BTW]. Dang I would like the beta, but not the pre-beta.
Lindy
on Dec 3, 2008
"Lindy should be barred from Paul's site for posting that kind of drivel. Paul???" Why because what I stated to be true is not?? Sort of like Wae's Killer Mac Worm, that is taking down corporations, that only he knows about. Apple cant fix and AV companies wont comment on? Or was it the content of my fairy tale that got your panties in a knot? It was sarcasm/exaggeration to point out the same of Wae's BS. I will type slower for you next time. I get its not about the OS. I get its about security, but simple facts cant be ignored. Windows gets attacked more because of its market share. Windows get attacked more because XP the OS with the most "in use" market share defaults to users as full administrators. OS X does not get the focus because the effort is not worth it. There is way less to attack and "out of the box" it more protected than XP, the #1 desktop OS right now. I have said this before, the virus of yesterday is basically gone, or so well protected against that straight up AV is insignificant. Todays malware is social, with the goal of gaining control of your OS to gather information (SSN/credit card numbers/bank account info/etc). Vista, Linux, and OS X out of the box restrict the power of all users and require the user to allow the malware to do the damage. XP does not. That is why I said above that its about WHAT the user does and not the AV or OS. For example last week or the week before the military was slammed by a Trojan and shut down USB drive/CDROM access to all users because their Windows systems were infected. Some user brought that crap into the DOD network. Some admin did not do his/her job, not its news. http://blogs.zdnet.com/security/?p=2206
mikegalos@msn.com
on Dec 3, 2008
DRWAM If you want some new toys to play with, I'd suggest spending some time with the new Windows Live Wave 3 releases that came out yesterday afternoon. Very cool. Very integrated both with Microsoft and 3rd party services. Liveside has a fair amount of info on the sites.
DRWAM
on Dec 3, 2008
Thanks Mike. I will check it out. Did you solve the riddle?
SenatorSIA
on Dec 3, 2008
To add to Lindy's comments. He is spot on with the market share that MS has. But also Windows makes themselves a target based on the vast capabilities the OS has. Windows allows programmers an enormous amount of control. For all the locked down code you can't get your hands on, you can still hack through/around it. Or better yet through the available applications that can be ran on it. You have app's calling to weakly written drivers and dll's. Yes a flaw but also a blessing for legit app's. What do you think would happen if Windows was as locked down as OS x? We already seen how well UAC was taken with Vista. Cheers.
Waethorn
on Dec 3, 2008
"Every time Paul calls what he does "journalism" I get deeply offended." Too bad this isn't journalism - it's a blog post. Maybe you should learn the difference before you criticize. @tayme: Maybe he can sneak into the library while everyone else is enjoying nap time. @mike: I don't envy the position of the Governor General anymore. She had to cut her European trip short to decide whether or not to clear the House, or to call another general election. The NDP and Liberals formed a majority coalition against the Conservative government. They also have the support of the Bloc Quebecois in future confidence votes, meaning they won't hold a vote of non-confidence as the coalition is doing with the current government. Only 7 weeks after an election and already the Opposition is trying to overrule the elected government. The PM just issued a recorded statement to the public, and the Liberal leader, Stephane Dion, had a recorded rebuttal. The PM would have the Gov. General suspend government until late in January, when the Conservative government issues their new budget proposal. The Opposition wants her to call an election ASAP. One of the big problems with having the Governor General suspend parliament until late January is that it affects one of the biggest industries affected by the economic downturn: GM. They figure that they could be filing for bankruptcy before the end of the year. Without an immediate economic stimulus package, GM could be going t!ts up. Thousands will be out of a job. The Opposition wants a stimulus package ordered up immediately, but the Conservatives won't supply it that fast. Their budget plan is due to be released January 27th. Could be interesting in the days to come, or "Hard times in the Maritimes" as they say.
mikegalos@msn.com
on Dec 3, 2008
DRWAM What riddle about Amalga?
mikegalos@msn.com
on Dec 3, 2008
Waethorn, I'd still be fine with them offering me the Governor General position even with having to cut a trip short to decide on a political no-win situation. It's still a cushy job. Sadly, I don't think I'm likely to be put up for the position even though I was in Toronto for the opening of the new Microsoft Canada headquarters back in 1991 - clearly they're not considering me for the post as a result of bias against former Microsoft employees. :-)
DRWAM
on Dec 3, 2008
Google it.
Waethorn
on Dec 3, 2008
"Wae's Killer Mac Worm, that is taking down corporations, that only he knows about." Me, a friend, and the IT security firm that he works for, as well as their business client. So far it is only known to have attacked one organization. It was written in a fairly generic fashion though, not with any indication that the developer knew what was on the target computer, so it could be used against any system. "Apple cant fix" Look at their history. It's not like they have a very successful record at it. "and AV companies wont comment on" AV companies don't actually. It's custom code, and so far they haven't seen it anywhere else. Most AV companies don't classify malware unless it's found by numerous sources. Your lack of IT security is glaring. Maybe you should garner some knowledge in the topic before criticizing it so. "There is way less to attack and "out of the box" it more protected than XP" Check your firewall settings recently? The XP SP2 firewall is turned on by default. Is it on OS X? *crickets* "its about WHAT the user does and not the AV or OS" Sorry that's just not true. Look up the definition of Remote Code Exploit. Anybody that has ever had Blaster or Sasser infect their system can testify. As far as that Mac code goes, the malware in question does look for Samba support as one of the attack vectors for infection.
Waethorn
on Dec 3, 2008
@Doc; May I remind you that Google is evil.
DRWAM
on Dec 3, 2008
I mean Live search it. That's a black mark on my soul for forgetting.
Waethorn
on Dec 3, 2008
"I'd still be fine with them offering me the Governor General position even with having to cut a trip short to decide on a political no-win situation. It's still a cushy job." It's a no-win for her. It all depends on the choice she makes. In either case, we're open to some political turmoil ahead. I'm not a big fan of GM though. They've been frivolously p!ssing away money for years. If they go down the sh!tter, that's their problem. I don't want my taxes bailing them out. Flood the market with cheap Asian imports instead. It's better for consumers. Our economy isn't nearly as bad as the US (which started it all), but nations relying on exports (we export most of our commodity products to the US) have to reevaluate our positions if other nations aren't buying. I've said before that Canada should've started trading our currency on the Worldwide market instead of comparing it to the Greenback. Other countries have done it already and came out ahead. They're the same countries that aren't having any troubles now too. BTW: The PM speech tonight had a record # of Canadian TV viewers.
Waethorn
on Dec 3, 2008
"I mean Live search it." Canadians can use "Big Ticket Search". It flips 2 cards at the top of the search results screen and if they match, you win the prize on the cards. http://www.bigticketsearch.com I don't like how they do the results page though. It's a narrow results page, and they appear to be in an IFRAME or something. The header at the top stays there, even after clicking a link, but the link is sized to the narrow IFRAME thing, so pages don't always fit. They need to fix that. I'm not sure if they have anything like it in the US, but Canadians don't have Live Search Cashback, so I guess this is the next best thing for us. Big Ticket Search, like a lot of things, isn't open to residents of Quebec. It's something to do with contests and language laws. It's no surprise that the province has a political party whose ultimate goal is to secede from the rest of the country. That party is the Bloc Quebecois - the same one that is supporting the Opposition against the Conservative government. The PM's speech emphasized that fact to discredit the Liberal/NDP coalition. It's quite the drama that's unfolding. BTW: If you're looking for a good political drama, look for a movie by the CBC miniseries called "H2O" (not Halloween: H2O, obviously), starring Paul Gross. Good movie. Kind of a twist ending too. The sequel isn't as good, but holds its own. It's called "The Trojan Horse".
tayme
on Dec 3, 2008
@Lindy - No...for you juvenile comment regarding Canadians and going blind...That was really below anything I have seen posted here in a long, long time. --tayme
mikegalos@msn.com
on Dec 3, 2008
DRWAM I know what Amalga is. I just don't know what the riddle is.
mikegalos@msn.com
on Dec 3, 2008
Waethorn Just an aside, I seriously p!ssed off Former CIA chief George H. W. Bush back in 1979 when he was running for President against Reagan by asking him whether the reports in Time Magazine were true that the CIA had a contingency plan in place to invade and annex Canada in case of a successful Quebecois sessession vote. He did NOT want to answer that one and sidestepped it.
tayme
on Dec 3, 2008
@mikegalos - 2 new former professions? Political Reporter and Conspiracy Theorist??? ;-) --tayme
Lindy
on Dec 3, 2008
"AV companies don't actually." So how long before you go blind? http://www.symantec.com/norton/security_response/threatexplorer/index.jsp http://www.symantec.com/business/theme.jsp?themeid=threatreport http://www.mcafee.com/us/threat_center/default.asp Oh look they have one in your neck of the woods... http://www.csis-scrs.gc.ca/index-eng.asp http://www.us-cert.gov/ http://cyberinsecure.com/ http://www.ca.com/us/anti-virus.aspx http://www.microsoft.com/security/portal/
tayme
on Dec 3, 2008
@Lindy - Nice try...You lose. Read waethorns post closely...maybe you can figure it out...doubtful, though. --tayme
shark47
on Dec 3, 2008
BTW,those who use the term "jihadist" so flippantly over here to describe Windows users, do you even know what it means? You've either disconnected yourselves from the rest of the world or are insensitive to the feelings of the victims of some of the attacks. I find that sad and unfortunate.
robertsjoe
on Dec 3, 2008
@mikegalos: "Just an aside, I seriously p!ssed off Former CIA chief George H. W. Bush back in 1979..." And now you're trolling Microsoft blogs, spreading FUD and basically being a Microsoft fanboy?
DRWAM
on Dec 3, 2008
I did not think that you would know. My apologies. The end of the story, but the beginning of our digital 3 hospital system of the future is...Microsoft Almalga, the unified health enterprise informatics platform designed to retrieve and display patient information from many sources. Couple other Microsoft offerings, Exchange and Sharepoint for better physician and management communication as an example, and you get a solid digital system with capabilities of safe, secure healthcare delivery, reducing medical errors by at least 50%, and increasing quality and good outcomes. We're all pretty excited. I told my wife that I had one on you Mike. Now I gotta tell her that you knew what it was. But, I shall return! Doc
Mum
on Dec 3, 2008
"Too bad this isn't journalism - it's a blog post. Maybe you should learn the difference before you criticize." That's like saying it's ok for a policeman to rob banks in his spare time because he's off duty. There are also journalistic rules, they're just unwritten. I know there are also different standards for journalism depending on where you're from, but generally you mostly get a choice between being a journalist and having a blog like this.
Lindy
on Dec 3, 2008
"Sorry that's just not true. Look up the definition of Remote Code Exploit. Anybody that has ever had Blaster or Sasser infect their system can testify. As far as that Mac code goes, the malware in question does look for Samba support as one of the attack vectors for infection." You or tayme to provide statistics? I am not saying that there are NOT holes in the OS and that AV is totally useless. Hell once a month you see holes being patched on Windows, they keep my Shavlik servers busy once a month pushing patches out to thousands of Windows servers. The point is for joe consumer these days the vast, VAST majority of crap that can take you down comes from a user doing something to let crap in, going to web site, clicking yes to crapware, opening email and clicking on a link etc. That firewall on XP wont do anything if your running as a full admin and click on a link in a email that then downloads all kinds of junk to your PC with a full admin privileges. I have seen so many home XP users that dont even have a password, running as a full admin, the default install for Windows XP home if I am not mistaken. Vista, OS X, and Linux will at least prompt you to before you slit your own throat, and OS X/Linux will require you to enter a password before the knife starts cutting. Viruses.....Un-patched Security holes.........or Privileged user self initiated attacks..........which causes more damage these days?? They dont make AV for stupidity. Straight from Wea's god.... http://technet.microsoft.com/en-us/library/cc507867.aspx "With Windows XP and earlier versions of Windows, any process that an administrator ran automatically used administrative privileges. This situation was troublesome because malware could make system-wide changes, such as installing software, without confirmation from the user. In Windows Vista, members of the Administrators group run in Administrator Approval Mode, which (by default) prompts administrators to confirm actions that require more than Standard privileges." XP firewall good stuff!!! Yeah that would be a link\facts to back my point up Tayme. Only if I could find that going blind link, it probably in the same folder as the Mac Worm takes down corporation NO news at 11 very hush hush.

Please or Register to post comments.

Related Articles

IT/Dev Connections

Las Vegas
September 30th - October 4th

Paul ThurottYou'll have the opportunity to experience:
• 120 Technical
Sessions
• Networking with Peers
• Expert Speakers


Come See Paul Thurrott & Mary Jo Foley in Person!

Register Now

Office 365 InfoCenter

Get the latest insight and info from Paul

Read Now!

What I Use
Apr. 18, 2013
Article

What I Use: On the Road 21

Every so often, I publish an updated version of my “What I Use” document, which details the technology products and services I actually use day-to-day. Since I’m currently on my third business trip in five weeks, this is perhaps an ideal time to discuss the technology products I rely on when I travel and a few related points....More
Mar. 6, 2013
Article

What I Use: March 2013 33

Lots of changes since November, including a new PC-based home server running Windows 8, several new smart phones, new PCs and tablets, new cloud backup, Office 365 Home Premium and a nice doubling of my Internet speeds courtesy of Verizon FIOS....More
WinSuperSite.com
Related Penton Sites
Copyright © 2013 Penton Media, Inc