The Mac Observer

Skip navigational links

Choose text size: Select small text. Select medium text. Select large text.

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
CNet Offers In-Depth Examination Of OS X Security, Apple's Communication

CNet Offers In-Depth Examination Of OS X Security, Apple's Communication

by , 11:00 AM EDT, June 3rd, 2004

CNet News has published one of the best articles we have read on the site in some time. The subject of the article is security and Mac OS X, with an emphasis on Apple's track record for communicating with its customers about security issues. The article examines recent specific security issues, has comment from Phil Schiller, industry analysts, and users alike. It also offers a look at some of the Unix-related issues affecting security, and compares the security track record of Mac OS X to that of Windows. From the article:

In general, the Mac operating system has seen far fewer bugs than its Windows counterpart. But some say a recent vulnerability demonstrates that the notoriously tight-lipped company must communicate more openly on security issues and move more quickly when it comes to plugging holes.

[...]

Although the tech industry has guidelines that call for researchers to notify vendors of threats and then wait at least 30 days before going public, Schiller said Apple uses its own process to decide when to issue a patch, a process that takes into account Apple's assessment of the threat posed by the vulnerability.

Apple has released a partial patch, but security researchers say the OS remains vulnerable to attack.

Some of the other knocks on Apple's response to security issues also center on the company's communications. For example, critics have called on Apple to offer more detailed information on its Web site, as well as to offer a dedicated e-mail address for reporting bugs. But Schiller said Apple does both those things--security concerns can be sent to product-security@apple.com, and the company posts information on its Web site. But he conceded that many people don't know about those programs and that the company could be doing a better job.

"We're actually doing a lot of the right things people want," Schiller said. "They're just not aware of it."

There is much more information in the full article, and we recommend it as a very good read.

The Mac Observer Spin:

Apple is tight lipped about everything. From product announcements, to long-term roadmaps for Mac OS X, to security issues, the company simply likes to control every single facet of information about everything. That secrecy makes sense in some areas, and doesn't in others. Security is one of those other areas.

The article points out that Apple's track record on security is fabulous, at least when compared to Microsoft, but security is one of those things where there needs to be no confusion or unanswered questions. There are multiple reasons for that, too. For one thing, it's the right thing to do. We have seemingly antiquated ideas about doing the right thing, of course, so take that as you will.

Another reason it would behoove Apple to be very, very open about all things security related is that it would contrast the company to Big Redmond. With Windows security problems leading to billions of dollars in lost productivity around the world, and Microsoft having a deserved reputation for trying to hide all of its security issues, an up-front Apple might well be a selling point to many folks, especially in the IT market. Microsoft has definitely improved its approach to security, but there is plenty of room for Apple to do it better.

In any event, this is an issue we have been contemplating in the halls of TMO Towers, and we found the CNet article to be very timely, and good food for thought.

CNet News Article

Observer Comments

Show: Subjects Only | Full Comments
View Name:RealityCheck -   Troll Posts: 392 Joined: 06 May 2004
Thu Jun 03, 2004 1:42 pm Subject: Apple Still Hasn't Fixed Major OS X Security Hole
Close Name:Photodan -   TMO Staff Posts: 3112 Joined: 11 Jun 2001
Thu Jun 03, 2004 1:54 pm Subject: Please RTFA RC

RC, if you insist on trolling, at least RTFA. You're whining about something the article already told us. If we're going to eat troll, it should at least be *good* troll.

Quote

Apple has released a partial patch, but security researchers say the OS remains vulnerable to attack.


Reply | Quote
Close Name:Guest
Thu Jun 03, 2004 3:59 pm Subject: RC: And when it's fixed (and it will be)...

...what are you going to piss, moan and whine about next. You're pathetic.


 Reply | Quote
Close Name:Guest
Thu Jun 03, 2004 6:34 pm Subject: Poor RC

Once you understand that he'll make up or say any old thing just to get the attention he so badly needs, his behavior starts to make sense.

Sad.


 Reply | Quote
Close Name:macjim Posts: 35 Joined: 23 May 2004
Thu Jun 03, 2004 7:41 pm Subject: would openness speed exploits?

Is it a great idea to encourage exploits by detailing a vulnerability before a fix is ready?

Having said that, Apple seemed slow to respond once the problem was publicised, and is being put to shame by Mac community freeware authors. Just as well there seem to be no exploits of the problems (known) so far.


 Reply | Quote
Close Name:Guest
Thu Jun 03, 2004 11:29 pm Subject: wow RC

so in comparison for me having to reformat my HD 4 times on my old dell cause it had $#!% OS 98 WITHOUT even getting a virus of any kind, i can get my hard drive erased on my mac once if im stupid and open a random program from an untrusted source or go to some iffy web site?

and windows XP security is just SOOO good it makes me cream my pants and moan with pleasure


 Reply | Quote
Close Name:Guest
Fri Jun 04, 2004 9:43 pm Subject: Microsoft Trumps Apple Again!

Why wait for a theoretical wiping of files on your Mac, when you can get Microsoft to actually do it, big time!

Check out the facts at:

http://news.com.com/Hotmail%2Bincinerates%2Bcustomer%2Bfiles/2100-1038_3-5226090.html


 Reply | Quote
Comment on this Article


Guest Posts Visible. Hide Them.
Back to top  Page 1 of 1    

You cannot edit your comments.   You cannot delete your comments.

Comments are currently closed. Please email the author instead.


Recent Headlines - Updated February 14th

Mon, 10:30 PM
News - Apple to Live Stream Tim Cook’s Goldman Sachs Speech
8:14 PM
News - Chinese Authorities Seize Apple iPads in Trademark Dispute
6:26 PM
News - Apple Tops Harris Reputation Poll with Record Score
5:33 PM
Mac Geek Gab Podcast - MGG 381: Mac Internet Recovery, HTML on iPad, iDevice Syncing, More!
5:04 PM
Apple Stock Watch - Apple’s Stock Sets New Closing High of $502.60
1:50 PM
News - A Great 3-Minute Video Look at Macworld|iWorld 2012
12:41 PM
Deal Brothers - Mac mini 2.5GHz dual-core Intel Core i5:  $699
11:51 AM
Rumor - Pegatron Forced to Drop Zenbook Due to MacBook Air Similarities
11:00 AM
Apple Stock Watch - Apple’s Stock Breaks $500 Mark For First Time
10:20 AM
News - Apple Announces Foxconn Inspections
9:34 AM
iObserver - AT&T Begins Process Toward Offering Shared Data
9:15 AM
News - Apple Files Motion to Stop Galaxy Nexus Sales in U.S.

The Mac Observer Reader Specials

  • TypeStyler 11 is now in the Mac App Store!! -- Special Introductory Price of $59.95!! -- To Buy From The Mac App Store Click Here Now!! Or buy direct from Strider Software.
  • Mac RAM Upgrades: MacBook Pro 16GB kits $475, 8GB Kits for $119.99! iMac 16GB RAM Kits (4x 4GB) for $229.99! Mac Pro Memory 32GB Kit for $399.99, 64GB Kit for $889.99! Mac Hard Drives 2TB Seagate SATA II for $249.99! Click Here!
  • Poker Mac If you're using a Mac, then you've gotta check out Online Poker Mac. This mac poker and online casino mac site actually does the unthinkable, it actually rewards!
  • __________
  • Buy Stuff, Support TMO!
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!