Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Snow Leopard Antimalware Feature Gaining Publicity

MacRumors

MacRumors

macrumors bot
Original poster
Apr 12, 2001
63,539
30,848



131726-snow_leopard_antimalware.jpg


As we briefly mentioned yesterday, antivirus vendor Intego notes that it has received multiple tips that Apple's forthcoming Snow Leopard operating system appears to contain at least some rudimentary antimalware capabilities. According to screenshots of warning dialog boxes submitted by Snow Leopard users, the operating system is able to warn users that a downloaded file contains malware, specifically the OSX.RSPlug.A Trojan Horse first discovered in October 2007.
We're not sure yet exactly how this works, but the above screen shot shows this feature working with a download made via Safari, detecting a version of the RSPlug Trojan horse in a downloaded disk image.
Click to expand...
MacRumors received the first report of this Snow Leopard feature in February 2009, soon after the release of developer build 10A261. But while the feature appears to have been present in Snow Leopard builds since that time, little is known about the functionality and from where Snow Leopard is drawing its information for identifying malware.

Intego's posting regarding the feature implies that Apple is not licensing the information from that company, while ZDNet has confirmed that Apple is not using the open-source ClamAV engine. It is possible that Apple is licensing the functionality in part from another commercial antivirus company or developing its own system, but Apple has not revealed any details about the feature on its extensive security page for OS X Snow Leopard, referring only to the existing standard scan of downloaded files to determine if an application is included in a given package.

Article Link: Snow Leopard Antimalware Feature Gaining Publicity
 
Article Link
https://www.macrumors.com/2009/08/26/snow-leopard-antimalware-feature-gaining-publicity/
mkrishnan

mkrishnan

Moderator emeritus
Jan 9, 2004
29,776
15
Grand Rapids, MI, USA
Very interesting... I'm surprised no one has been able to crack what they're doing. After they put Clam into OS X Server, I almost thought they might eventually roll it out as a component of OS X, even though there's little need. Anyway, nice to have what little one needs in the way of anti-malware right in the package. :)

EDIT: It seems like a good thing to me -- the only caveat is that, were there actually to be a proliferation of malware, no one knows what Apple's update scheme is, etc, and it could be very confusing who is and who is not protected and from what....
 
DELLsFan

DELLsFan

macrumors 6502a
Jan 6, 2009
830
6
mkrishnan said:
Very interesting... I'm surprised no one has been able to crack what they're doing. After they put Clam into OS X Server, I almost thought they might eventually roll it out as a component of OS X, even though there's little need. Anyway, nice to have what little one needs in the way of anti-malware right in the package. :)

EDIT: It seems like a good thing to me -- the only caveat is that, were there actually to be a proliferation of malware, no one knows what Apple's update scheme is, etc, and it could be very confusing who is and who is not protected and from what....
Click to expand...

There won't be a proliferation of malware - because Macs simply don't get virus', trojans, or suffer from malware like Windows machines do ... right? :rolleyes:

Apologists will hail the news as a great proactive approach by Apple. The rest of us are wondering why Apple even bothered - considering how "in your face" Mac enthusiasts are about not being susceptible to malware - which is, of course, false.
 
Eidorian

Eidorian

macrumors Penryn
Mar 23, 2005
29,190
386
Indianapolis
It's a good thing but I think Apple should lay off the BUY A MAC NO MALWARE, IT JUST WORKS on the ad side.

I agree with mkrishnan on the updating scheme of things.
 
G

greenhero

macrumors newbie
Aug 26, 2009
8
0
This can only be a good thing. Personally I think they should also release this functionality ot Leopard as part of 10.5.9 :)
 
dwman

dwman

macrumors 6502
Nov 15, 2007
359
157
San Francisco
If they start acknowledging the very premise on which they've built their "Macs don't get viruses" message since 2006, MS fanboys will start howling at the perceived hypocrisy.

Time for a new ad campaign.:D
 
G

greenhero

macrumors newbie
Aug 26, 2009
8
0
WG5516 said:
Exactly...
Click to expand...

No one with knowledge about macs has ever denied the fact that macs get viruses. It is just a marketing strategy of Apple to say they don't get viruses. But the fact is they are not effected by the same viruses that inflict damage on Windows systems.
 
ltldrummerboy

ltldrummerboy

macrumors 68000
Oct 15, 2007
1,534
9
Viruses aren't a problem, but I fear trojans will soon become much more widespread than before. This looks like a good thing.
 
G

greenhero

macrumors newbie
Aug 26, 2009
8
0
dwman said:
If they start acknowledging the very premise on which they've built their "Macs don't get viruses" message since 2006, MS fanboys will start howling at the perceived hypocrisy.

Time for a new ad campaign.:D
Click to expand...

Personally I think the aple adverts should focus on the features Macs have rather than all the flaws windows pcs have. Because if you dont want the windows issues you install Linux for free. Yes the fanboys of PCS, mainly Dells have already started to stir up trouble. Personally I have a strong dislike of Dell machines.
 
R

rented mule

macrumors member
Sep 8, 2006
57
0
It wouldn't be very hard for Apple to build a system from scratch. There is very little malware on Mac OS X so I'm sure Apple can easily identify the first 3 existing malware and then add the one or two malware per year that gets released into the system.
 
iStudentUK

iStudentUK

macrumors 65816
Mar 8, 2009
1,439
4
London
Interesting development.

This is a useful feature, but will it help or hurt Mac reputation? Could be said that Apple is acknowledging Mac OS is susceptible to enough malware that they need to take action, or that they are being extra security conscious and protecting users.
 
bytethese

bytethese

macrumors 68030
Jun 20, 2007
2,707
120
greenhero said:
No one with knowledge about macs has ever denied the fact that macs get viruses. It is just a marketing strategy of Apple to say they don't get viruses. But the fact is they are not effected by the same viruses that inflict damage on Windows systems.
Click to expand...

Strange, I have knowledge of Macs yet I deny that they ever get viruses. Can they be carriers? Sure. But they do not get infected. Perhaps I don't exist...

On another note, it makes it ironic that Apple commissioned the Mac vs PC commercial where the security guy for Vista was saying "Cancel or Allow" and OS X will now be doing this. :)
 
DELLsFan

DELLsFan

macrumors 6502a
Jan 6, 2009
830
6
ltldrummerboy said:
Viruses aren't a problem, but I fear trojans will soon become much more widespread than before. This looks like a good thing.
Click to expand...

Good, but not as important as education and behavior awareness when computing. Unfortunately the ignoramuses inclined to click on things they shouldn't or open attachments from people they don't know are probably just as likely to infect their Mac as they would a PC.
 
M

MacAerfen

macrumors member
Mar 12, 2007
87
0
So Apple should change its stance on virus and malware because there have been two verifiable malware? both of which requires the user to authenticate their password before installing. We have the first one being the very trojan that the screenshot is from, which basically hijacks your DNS settings which people get by installing video players from questionable websites, which they have to install by hand using their admin password. The other malware was part of a pirate copy of iWork that people were downloading illegally that still required the admin password to install.

On it's own the Mac OS does not have the same risk currently that Windows users share by browsing the internet, and yes Windows has gotten better at protecting itself but it is still sorely lacking.

So unless you Windows users who are saying that Apple is lying when they say the macs don't get malware/viruses care to share the large list you all apparently have of the malware and viruses out there that can infect a mac on its own without the user doing it to themselves then you really need to stop saying it.

So far I have seen a ton of people post claims that the mac gets viruses and malware but none of them have backed that claim up with a concrete list of these so called viruses and malware thats gumming up all the macs out there.

Even if these two examples were able to get on the Mac on their own I would still use a mac simply because 2 viruses out there are a whole lot less than what could get on my Windows computer.
 
NeverhadaPC

NeverhadaPC

macrumors 6502
Oct 3, 2008
410
2
Can I turn this feature off?? :confused:

I do not want to have SL turn into Vista where my OS turns into a high-security prison.

Disallow or proceed?
 
I

ilp

macrumors member
Sep 13, 2007
82
0
Apple realizes that malware protection is inevitable. It seems that the MacOSX is much more secure by nature, so remote exploits are significantly more difficult. The easiest path of entry becomes trojans, where you execute bad stuff locally with admin privileges.

However, current AV products on Windows are just not that great to use. They are a hassle through and thru. Major players like Symantec AV and McAfee are fat slob pigs. Do you really want to put your users through such a user experience?

I really hope that this is Apple's own, in-house designed anti-malware solution. Because then it will not suck.
 
ValSalva

ValSalva

macrumors 68040
Jun 26, 2009
3,783
259
Burpelson AFB
This is a good thing...

Malware is inevitable as Apple gains marketshare. Malware writers will attack OS X if they feel they can make money taking over enough systems. It's not a knock on OS X, it's just that malware writers are clever.

Who cares about advertising strategy? At least they are focused on security.
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom