OS X In The Crosshairs

There’s an interesting article over at SecurityFocus about a security guy running OS X who got cracked into at Shmoocon. The scary part is that he still doesn’t even know how the attacker got in.

So just a reminder — no OS is flawless…and being arrogant about your supposed invulnerability is precisely the worst thing one can possibly do.

And remember, I’m a big OSX fan. It’s not the fan part that gets people in trouble — it’s the fanboy part. People need to keep their perspective even when they love a particular product — as I do OS X.

Over the next few months, as OS X gets more and more popular, and as more and more attacks are found, I want to see how Apple reacts. I don’t much like their current approach to security; they’re too quiet about it. I’d like to see more of an open approach to the whole thing, and I hope that’s where they head as things start to heat up.

In other words I want to see a Mozilla approach rather than, say, an Oracle approach. As weird as it sounds, coming from a security guy, Microsoft’s current approach is a very good one. They are facing the problems head on, and I applaud that. Now if they could just stop the FUD campaigns agains Linux I’d have a lot more respect for them.

Hopefully Apple won’t go down that same path of throwing stones and calling names while being no better off themselves.