The macosxhints Forums
Page 3 of 3 12 3
Show 100 post(s) from this thread on one page

The macosxhints Forums (http://hintsforums.macworld.com/index.php)
-   The Coat Room (http://hintsforums.macworld.com/forumdisplay.php?f=8)
-   -   Guess what my new job is! (http://hintsforums.macworld.com/showthread.php?t=86632)

pantherman13 03-07-2008 10:35 PM
Defective by design.
 
Quote:
Originally Posted by tlarkin (Post 456208)
It is just by design. All users run as root basically and applications, drivers, APIs, etc can access the kernel directly via kernel hooks. One side, it makes things super easy and allows developers access to the kernel, on the other side its like opening up pandora's box as far as security goes.

Of course it can be locked down just like any other OS, the problem is it is just easier to find a way around. I wouldn't call it less secure, I would just call it a bit harder to manage. I can lock down windows just like I can lock down OS X, it just takes more effort with windows.
User Account Control in Windows Vista supposed to put an end to this sort of "open door" access. So was Kernel Patch Protection.

tlarkin 03-08-2008 12:10 AM
yeah but some big gorillas like Symantec complained so they left API and Kernel hooks in the OS.

If it changed everything why are there Vista viruses? You still are running every user as root.

Mikey-San 03-08-2008 12:41 AM
Quote:
You still are running every user as root.
This just isn't true.

http://weblogs.asp.net/kennykerr/arc...t-Control.aspx

http://www.techbyter.com/2007/20070701.shtml

Quote from the second link:

Quote:
At long last, Windows has the equivalent of the root user (well, more or less, anyway) and nobody runs as root.
http://www.hardforum.com/showthread.php?t=1170936

From this link:

Quote:
There is no more Administrator account as it has always existed in Windows versions prior to Vista. Now all users have standard user accounts, or tokens which denote the level of access they have when logged in. The standard user account is what forms the basis of the new security model in Vista. To gain access to Administrative options, the user must provide the necessary credentials (by bringing that particular token into play) on a per-case-basis as required called Admin Approval Mode. Even if you log in as an Administrator under Vista, to do anything that requires actual Admin priviledges will still prompt the Administator account user for consent or credentials to perform the task at hand.
And the documents at this link do not suggest that every account runs as root, in fact describing quite the opposite:

http://technet.microsoft.com/en-us/w.../aa905113.aspx

Mikey-San 03-08-2008 12:48 AM
Quote:
why are there Vista viruses?
For several reasons, the relative significance of each of which is debated by many.

Jay Carr 03-08-2008 02:58 AM
You know, just for kicks and giggles, I went and googled things like "Vista Viruses" or "List of Vista Viruses", and I saw a couple. But what really caught my attention was the number of Mac forums that harp on Vista viruses. Have to admit, it is starting to sound a bit passe.

I still think OSX is more secure that Vista. Though I do think the recent steps Microsoft has taken (as shown by Mikey-San), are in the right direction. So, for myself, I think I'll concentrate more on the user experience.

I was thinking about this yesterday and it occurred to me that some time soon computers will be a lot like cars. There will be plenty of brands that work, and the big difference (at least in similar price ranges) is really more a style issue that anything else.


All times are GMT -5. The time now is 04:31 AM.
Page 3 of 3 12 3
Show 100 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.
Site design © IDG Consumer & SMB; individuals retain copyright of their postings
but consent to the possible use of their material in other areas of IDG Consumer & SMB.