OS X In The Crosshairs
By Daniel Miessler on February 8th, 2006: Tagged as Apple | Fanboy | Information Security | OS X | Security
There’s an interesting article over at SecurityFocus about a security guy running OS X who got cracked into at Shmoocon. The scary part is that he still doesn’t even know how the attacker got in.
So just a reminder — no OS is flawless…and being arrogant about your supposed invulnerability is precisely the worst thing one can possibly do.
And remember, I’m a big OSX fan. It’s not the fan part that gets people in trouble — it’s the fanboy part. People need to keep their perspective even when they love a particular product — as I do OS X.
Over the next few months, as OS X gets more and more popular, and as more and more attacks are found, I want to see how Apple reacts. I don’t much like their current approach to security; they’re too quiet about it. I’d like to see more of an open approach to the whole thing, and I hope that’s where they head as things start to heat up.
In other words I want to see a Mozilla approach rather than, say, an Oracle approach. As weird as it sounds, coming from a security guy, Microsoft’s current approach is a very good one. They are facing the problems head on, and I applaud that. Now if they could just stop the FUD campaigns agains Linux I’d have a lot more respect for them.
Hopefully Apple won’t go down that same path of throwing stones and calling names while being no better off themselves.
Your link to securityfocus is broken, but I think you meant http://www.securityfocus.com/news/11375
You know what I think happened? The researched had an easily gueassable password, the attacker managed to guess it and connect (via ssh perhaps?)
Seems far more likely than some spooky unknown vulnerability..
Comment by Zhasper — 2/9/2006 @ 11:27 pm