On Monday 14 May 2007 01:46, Just1n T1mberlake wrote:
scott wrote:
Evidently you need more experience in security research:
http://projects.info-pull.com/moab/
I believe this should dispel your myth about OSX's invulnerability.
Really...did you honestly believe it was invincible?
Regards
Of course no operating system is invincible when you have full access
to the machine. You could just delete all of the files yourself.
OSX isn't using all of the tricks like windows does to try and hide
executables throughout dlls and other such files. Ever heard of dll
hell? No wonder these machines are broken into so often.
The point is what would you rather have 1000 windows machines 1000
linux machines or 1000 OSX machines? If you wanted to not be infected
I'd be taking the OSX machines for sure, otherwise if you want to get
these kind of kernel rootkit tricks of JOquendo or something like
rhosts for your life then you would choose one of the linux
distributions.
What next are you going to virtualise this and run them all on the
same host? Frankly, it really doesnt matter what your guest server is
running if your host is broken :-)
Your points are moot.
The only reason OSX is "so good" security wise, is because the OS doesn't give
open administrator access to the users, preventing the dumbness of the
uninteligent users from screwing up the OS in the conventional sense, I bet
the instant you introduce "administrative privs" into OSX, you'd get security
breaches galore.
To put it bluntly: OSX Treats it's users like they're in a playpen, trying not
to expose the users to the "real world"
It's the DUMB USERS who are the security risks. NOT the OS the majority of the
time. If you left a Windows machine running, with a competent user, it will
have a lower risk of becoming infected/rooted than if you parked a clueless
user in front of the machine.
Same with Linux, park a stupid superuser in front of the machine, you will of
coruse you'll get stupid results. However, if you get a competent superuser
that only uses "root" for admin tasks only and doesn't do anything
exparamental under root on a production machine, as well as not give users
any more permission than they need, you'd be set.
So what are we trying to do? protect the OS from what? or protect the users
from making idiotic decisions that will screw up their boxes?
Remember folks: Computers only operate as good as those who operate them.
--
Winning is a habit. Unfortunately, so is losing." - Vincent Lombardi
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
