Dailydave mailing list archives
Re: This guy cracks me up.
From: Dave Aitel <dave () immunityinc com>
Date: Mon, 04 Sep 2006 11:06:54 -0400
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Do I understand this correctly to mean that: If OS X security is worse than Microsoft, but we still don't see OS X people getting hacked, then the only possible explanation is that only the majority OS gets hacked? If I did a reasonably good translation, then my comment would be that perhaps it's because OS X users are so horribly bad at security that they never notice when they get hacked? This can be compounded by hackers not doing obvious things like stealing money from their OS X targets or putting up pop-ups, etc. Likewise, I think it would be affected by OS X being rarely used in a corporate environment, and hence not protected by the typical corporate IT trappings. - -dave dan () geer org wrote:
PREMISE: If as is often stated here and elsewhere and in various heated ways, Mac OS X security is meaningfully inferior to the Microsoft way, then CONSEQUENT: The low observed attack rate against Mac OS X machines cannot critically depend on the "insecurity" label being placed on it. Frankly, my dear, this leaves the protective effects of platform diversity as the leading contender for the upstream cause of the downstream effect, viz., low observed attack rates. --dan, who notes that at the recent USENIX Security Symposium 35% of the machines in the room for the keynote address had the Apple logo, a 10-to-1 odds ratio when comparing to the population at large. _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFE/EENB8JNm+PA+iURAquzAJ9BzRv34urzubkdSpnJnd1P/0yntwCg2HjM 2qfaTmJS92BBnOmz7dOX3NA= =MRZs -----END PGP SIGNATURE----- _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- This guy cracks me up. Dave Aitel (Sep 02)
- Re: This guy cracks me up. Rhys Kidd (Sep 03)
- Re: This guy cracks me up. Daniel (Sep 03)
- Re: This guy cracks me up. MindsX (Sep 03)
- Re: This guy cracks me up. dan (Sep 03)
- Re: This guy cracks me up. Dave Aitel (Sep 04)
- Re: This guy cracks me up. Bob Mahoney (Sep 04)
- Message not available
- Re: This guy cracks me up (OS X Hacks) Bob Mahoney (Sep 05)
- Message not available
- Re: This guy cracks me up (OS X Hacks) Bob Mahoney (Sep 05)
- Re: This guy cracks me up. Rhys Kidd (Sep 03)
- Re: This guy cracks me up. Jamie Riden (Sep 04)
- <Possible follow-ups>
- Re: This guy cracks me up. johnny cache (Sep 04)
- Re: This guy cracks me up. Bill Weiss (Sep 05)
- This guy cracks me up. johnny cache (Sep 05)
- Re: This guy cracks me up. Daniel (Sep 06)
- Re: This guy cracks me up. Randy Mueller (Sep 05)