Page 1 of 2 12 LastLast
Results 1 to 15 of 26

Thread: Viruses ?

  1. #1
    Viruses ?

    Member Since
    May 24, 2004
    Posts
    23
    Specs:
    Ibook G4 1.33 ! 60 gig/external 250gig.
    Viruses ?
    Hey i've been surfing around a lot lately and I've been a pc user for pretty much my whole life (19 years). Planning on switching in August to an ibook. I read some post where people talk about how Macs can't have viruses or that I shouldn't have to worry about viruses. Why come Macs can't get viruses ?

  2. #2
    Viruses ?

    Member Since
    Dec 28, 2003
    Location
    Long Island, NY
    Posts
    911
    Specs:
    15" MacBook Pro & 23" ACD
    they have a much more secure system, they aren't constantly logged on as root...(Windows is or something like that)uhhh....I don't really know exactly why...but I just know that they are!

  3. #3
    Viruses ?
    Strider's Avatar
    Member Since
    Apr 09, 2004
    Location
    Dubai
    Posts
    973
    Specs:
    15" MBP 2.16GHz ^ATI Radeon X1600 256MB ^100GB @ 7200 rpm ^2GB RAM ^Glossy Screen +iPod 4G 20 gigs
    Of course Macs can get virii/worms. Its only a matter of time. If someone wants to write a virus for the Mac, they can do it. Its only a question of circulation. Macs are fewer, much fewer, than PCs. So virii don't circulate around the globe. Hence they are safer.

  4. #4
    Viruses ?
    MAC-simus's Avatar
    Member Since
    Jan 08, 2004
    Location
    Sweden
    Posts
    442
    Specs:
    2GHz C2D macbook
    Quote Originally Posted by discombobulated
    Hey i've been surfing around a lot lately and I've been a pc user for pretty much my whole life (19 years). Planning on switching in August to an ibook. I read some post where people talk about how Macs can't have viruses or that I shouldn't have to worry about viruses. Why come Macs can't get viruses ?
    the OS X system is much secure then windows. I give you few examples:
    1. no constantly open ports (5 ports are open on windows)
    2. every software insallation requires administrator password (unlike windows)
    3. apps require permissions to execute.

    and there are many more that i dont know.
    for these reasons, no viruses can sneak into system, if they do, they can not install themselvs and finaly they cannot execute unless the root permits it.

    chek it out and deside

    http://www.usfca.edu/~trembath/smon/macpc.html

  5. #5
    Viruses ?

    Member Since
    Mar 30, 2004
    Location
    USA
    Posts
    4,744
    Specs:
    12" Apple PowerBook G4 (1.5GHz)
    Well, it's complicated. Here's the Cliff's Notes version:

    For one thing, the Unix permissions structure that Mac OS X (like all Unix-like OS's) uses is very strong. No program (virus/worm/trojan) can modify a file without permission. Since the System is protected by a very high permission threshold (called "root") it is very difficult to infect.

    Besides that, Macs are less common. Which means three things: firstly, that there are fewer people who know enough about them to write viruses/worms/trojans; secondly, that there are fewer potential victims, and thirdly, that it is much harder for viruses (etc.) to spread. (Remember, it's a chain reaction: one machine infects another, which infects another. On a platform with 95% market share, this is easy; when you have only 5% or less, it's much harder to find the next link in the chain.)

    NOW. That said, there has been one (Yes, one) confirmed case of a Mac trojan. It was a simple program that deleted files, and was spread on filesharing networks (Gnutella/Limewire.)

    But:
    1. You first had to download it manually using Limewire
    2. You then had to double-click it manually
    3. Because of the OS X permissions system, it would only delete files belonging to the User who double-clicked it. Meaning, other Users' files, and the OS itself, were completely unaffected.
    4. It would not run again unless the you double-clicked it again. (Since it had no way to infect the OS itself.)

  6. #6
    Viruses ?
    witeshark's Avatar
    Member Since
    Mar 09, 2004
    Location
    Miami FL
    Posts
    2,860
    Specs:
    G4 1Ghz OS X 10.4.7
    Quote Originally Posted by discombobulated
    Hey i've been surfing around a lot lately and I've been a pc user for pretty much my whole life (19 years). Planning on switching in August to an ibook. I read some post where people talk about how Macs can't have viruses or that I shouldn't have to worry about viruses. Why come Macs can't get viruses ?
    One central reason Mac (and Linux/BSD) are so less prone is because they don't have the windows registry, which is often edited to the worm writer's convenience :cool:

  7. #7
    Viruses ?

    Member Since
    May 24, 2004
    Posts
    23
    Specs:
    Ibook G4 1.33 ! 60 gig/external 250gig.
    Good stuff guys ! As of yet i can't afford my ibook... so i took all the cash i have and bought apple stocks on monday.. so far it's gone up $2.91 hooray.

  8. #8
    TylerMoney
    Guest
    Right now the only way you can get a mac virus is to download it, and then run it...no virus can just come onto a mac and automatically run...at least not at this time.

    So, if you do get a virus on a mac...you kind of diserve it...though, not really....it's just not as faultless as getting one on a pc.

  9. #9
    d4rr3n
    Guest
    Quote Originally Posted by TylerMoney
    Right now the only way you can get a mac virus is to download it, and then run it...no virus can just come onto a mac and automatically run...at least not at this time.

    So, if you do get a virus on a mac...you kind of diserve it...though, not really....it's just not as faultless as getting one on a pc.
    Wasn't there a big fuss made about a os x exploit? Wasn't it something you could program onto a website that allowed you to run any code you'd like on any os x machine that opened the website (essentially taking control of the machine)? Maybe i'm confusing this with something else :confused:

  10. #10
    Viruses ?

    Member Since
    Mar 30, 2004
    Location
    USA
    Posts
    4,744
    Specs:
    12" Apple PowerBook G4 (1.5GHz)
    Quote Originally Posted by d4rr3n
    Wasn't there a big fuss made about a os x exploit? Wasn't it something you could program onto a website that allowed you to run any code you'd like on any os x machine that opened the website (essentially taking control of the machine)? Maybe i'm confusing this with something else :confused:
    Well, firstly, this was a vulnerability, not an exploit. Meaning it was possible, but never actually used for nefarious purposes.

    And secondly, it's been patched.
    http://secunia.com/advisories/11689/
    Description:
    A vulnerability has been reported in Mac OS X, allowing malicious web sites to compromise a vulnerable system.

    The problem is that code silently delivered using variants of the "disk" URI handler vulnerability described in SA11622, can be executed without using the "help" URI handler.

    Two methods have been discussed, allowing malicious websites to execute code from mounted disk images:

    1) A disk image or a volume (e.g. AFS, SMB, FTP, or DAV) can register arbitrary URI handlers, which will execute code placed on the disk image when accessing the URI.

    2) A disk image or a volume can change an unused URI handler (e.g. TN3270) to execute code placed on the disk image when accessing the URI.

    This problem is escalated due to the fact that it by default is possible to silently download and mount disk images using two known methods (silent download and execution of "safe" files and the "disk" URI). Furthermore, it is reportedly also possible to mount volumes using other methods such as SMB, AFS, FTP, DAV and others.

    This vulnerability has been confirmed on a fully patched Mac OS X systems (including the patch "Security Update 2004-05-24 for Mac OS X" released by Apple, which fixes the "help" URI handler vulnerability) running versions 10.3.3 and 10.3.4.

    Reportedly, working exploits using "ftp" exist, but also "afp" seems to be a likely attack vector.
    It may also be possible to use "ssh" to open a connection to a remote site allowing the remote site to gain direct access to a vulnerable system.

    The core of the problem seems to be the design of URI handling in Mac OS X. It is likely that many other URI handlers are affected in various ways.

    Attack vectors include browsers and programs supporting Mac OS X URI handling.

    Solution:
    Apple has issued Security Update 2004-06-07, which addresses the vulnerability by presenting users with a dialog box the first time a file is launched automatically.
    It took Apple two tries to get it right (The first patch only fixed the Help Viewer vulnerability) but it was completely fixed about a month after the exploit. Not a great response time, but better than some Windows vulnerabilities.

    One more reason to run Software Update regularly.

  11. #11
    d4rr3n
    Guest
    Well what's difference between an exploit and a vulnerability? You are exploiting the vulnerability, so it's the same thing. What is the difference with this vulnerability and alot of windows vulnerabilities, seems both OS's are capable of being taken over by a website. Do all apples currently ship with this vulnerability fixed or do you have to update it yourself?

  12. #12
    Viruses ?
    witeshark's Avatar
    Member Since
    Mar 09, 2004
    Location
    Miami FL
    Posts
    2,860
    Specs:
    G4 1Ghz OS X 10.4.7
    Quote Originally Posted by d4rr3n
    Well what's difference between an exploit and a vulnerability? You are exploiting the vulnerability, so it's the same thing. What is the difference with this vulnerability and alot of windows vulnerabilities, seems both OS's are capable of being taken over by a website. Do all apples currently ship with this vulnerability fixed or do you have to update it yourself?
    The main difference is that exploits can fully engage their task without aid by the target computer - or user. Vulnerability needs at least some user help to do anything

  13. #13
    d4rr3n
    Guest
    Quote Originally Posted by witeshark
    The main difference is that exploits can fully engage their task without aid by the target computer - or user. Vulnerability needs at least some user help to do anything
    Well by connecting to the internet and allowing your computer to send and receive information aren't you providing some user help to an attacking computer?

  14. #14
    Viruses ?
    witeshark's Avatar
    Member Since
    Mar 09, 2004
    Location
    Miami FL
    Posts
    2,860
    Specs:
    G4 1Ghz OS X 10.4.7
    Quote Originally Posted by d4rr3n
    Well by connecting to the internet and allowing your computer to send and receive information aren't you providing some user help to an attacking computer?
    To a minimal extent; because real system changes need admin permissions, so any attempt to make changes should cause a password prompt which allows you a chance to prevent it. In windows, registry edits can just happen without any sign. The system just goes pear shaped all in a sudden.

  15. #15
    d4rr3n
    Guest
    Quote Originally Posted by witeshark
    To a minimal extent; because real system changes need admin permissions, so any attempt to make changes should cause a password prompt which allows you a chance to prevent it. In windows, registry edits can just happen without any sign. The system just goes pear shaped all in a sudden.
    So what about that website vulnerability? Did it give people a chance to prevent what could happen? From what i read the person exploiting it could basically set up the website to do/run whatever they wanted on your computer.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Why no viruses?
    By _Claymore_ in forum OS X - Operating System
    Replies: 18
    Last Post: 04-28-2011, 08:34 AM
  2. I have Viruses.
    By kribensis12 in forum OS X - Operating System
    Replies: 17
    Last Post: 04-22-2011, 08:18 PM
  3. Replies: 3
    Last Post: 11-22-2009, 11:01 PM
  4. Viruses?
    By Scatman in forum Internet, Networking, and Wireless
    Replies: 3
    Last Post: 11-25-2005, 06:52 AM
  5. Mac viruses VS. PC viruses
    By dziner in forum OS X - Operating System
    Replies: 8
    Last Post: 09-04-2003, 08:35 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •