Re: Mac OS X security under scrutiny

[InfoSec News <isn () c4i org>]

Forwarded from: "Thor (Hammer of God)" <thor () hammerofgod com>

> SANS's Dhamankar stressed that the intent was not to call the Mac OS
> X operating system a threat, but to give Mac users a wake up call.
> If they have not been paying attention to security, then they should
> start today, he said.

If the intent was simply a "wake up call," then why is it listed as
one of "The Twenty Most Critical Internet Security Vulnerabilites???"  
Classifying it as "Most Critical" doesn't really fit when one claims
to be mearly increasing awareness for "some people that feel that, if
they are running Mac OS X, then all is well."  It brings the validity
of the entire list into question.  But then again, so does claiming
that AV software itself is one of the most critical vulnerabilites
when any real-world experience still shows that outdated AV, not the
AV itself, is a far greater concern.

t 



_________________________________________
Earn your Master's degree in Information Security ONLINE
www.msia.norwich.edu/csi
Study IA management practices and the latest infosec issues.
Norwich University is an NSA Center of Excellence.