Go Back   MacRumors Forums > News and Article Discussion > Mac Blog Discussion

Reply
 
Thread Tools Search this Thread Display Modes
Old May 31, 2011, 11:17 PM   #26
FroMann
macrumors 6502
 
Join Date: Mar 2011
Location: North Carolina, USA.
Better than downloading a third party anti virus application.
__________________
13" MacBook Pro, 2.4ghz Intel Core 2 Duo, 4GB RAM, 250GB HDD.
iPod Nano 5G
FroMann is offline   3 Reply With Quote
Old May 31, 2011, 11:58 PM   #27
Undecided
macrumors 6502a
 
Join Date: Mar 2005
There's nothing wrong with open safe files. Even with this whole malware thing, even though it launches the installer, it's trapped in the installer and won't install unless you allow it.

You know what this thing is? An IQ test.
Undecided is offline   5 Reply With Quote
Old Jun 1, 2011, 12:26 AM   #28
Apple...
macrumors 68020
 
Apple...'s Avatar
 
Join Date: May 2010
Location: The United States
Wirelessly posted (Opera/9.80 (iPhone; Opera Mini/6.13548/24.871; U; en) Presto/2.5.25 Version/10.54)

Quote:
Originally Posted by FroMann
Better than downloading a third party anti virus application.
Amen! I'm very happy with the actions Apple made today.
__________________
MacBook Air 13", 128GB SSD, 4GB RAM, 1.8GHz Intel Core i5
iPhone 5S 64GB Silver
Apple TV
Apple... is offline   0 Reply With Quote
Old Jun 1, 2011, 01:15 AM   #29
Žalgiris
Banned
 
Join Date: Aug 2010
Location: Lithuania
Quote:
Originally Posted by roadbloc View Post
OS X now has an inbuilt antivirus. The day has come.
There are no known viruses for Mac OS X. Get your facts straight and stop spreading misinformation, pal.

Quote:
Originally Posted by Dammit Cubs View Post
And so it begins .......
Endless stupidity. Sure.

Last edited by annk; Jun 1, 2011 at 04:22 AM. Reason: Merged - please use multi-quote
Žalgiris is offline   0 Reply With Quote
Old Jun 1, 2011, 05:25 AM   #30
Ger Teunis
macrumors member
 
Join Date: Jan 2010
Location: In front of my Mac
Quote:
Originally Posted by Žalgiris View Post
There are no known viruses for Mac OS X. Get your facts straight and stop spreading misinformation, pal.
Endless stupidity. Sure.
What he said; it's just an extra protection (and warning) before opening a download for the gullible OSX users. In no means a virus scanner.

Lets get the facts right: it's not a virus. The application will not automatically install itself. The users still has to take actions to install the app. So in short: it's a 'normal application' doing bad things. The real problem here is that it is able to convince end-users (like you and me) that it's a secure application to install.

There is no real way of protecting users from that except educate them not to trust anything they download.

Last edited by Ger Teunis; Jun 1, 2011 at 05:43 AM.
Ger Teunis is offline   1 Reply With Quote
Old Jun 1, 2011, 06:30 AM   #31
roadbloc
macrumors 604
 
roadbloc's Avatar
 
Join Date: Aug 2009
Location: UK
Quote:
Originally Posted by Žalgiris View Post
There are no known viruses for Mac OS X. Get your facts straight and stop spreading misinformation, pal.
Oh don't be so pedantic. You knew what I meant.
__________________
roadbloc is offline   -4 Reply With Quote
Old Jun 1, 2011, 07:31 AM   #32
nrajack
macrumors member
 
Join Date: Oct 2009
Location: Trenton, NJ
Quote:
Originally Posted by frankieboy View Post
See System Preferences > security > General tab.
Only if you're on 10.6.7. For those of us on older revisions of Snow Leopard it doesn't exist.
__________________
Jack
Proud NRA Life Member
Long time Apple fan & user from back in Apple 1 days
nrajack is offline   0 Reply With Quote
Old Jun 1, 2011, 08:16 AM   #33
gnasher729
macrumors G5
 
gnasher729's Avatar
 
Join Date: Nov 2005
Quote:
Originally Posted by z3r0 View Post
A Jail/Sandbox would make Trojans a none issue. Along with an out going firewall to stop phoning home. Finally only allowing applications to be executable/ran from specific directories. Now reason I should be able to run an app that's installed in another location besides the Applications folder. Unix apps that are installed in bin etc... Would need admin rights/sudo to be installed in the first place.
Actually, no. If you look at what MacDefender is doing (lying to the user that there are tons of viruses on their Mac, showing disgusting websites, and asking for credit card information to pay to get rid of these non-existing viruses), it can do all of that quite nicely in its own little sandbox.


Quote:
Originally Posted by mcdermd View Post
And yet they keep "Open 'safe' files" around in Safari. Get rid of that already.
This is very easy to demand, but you haven't thought through the consequences. (The main consequence being that all users including you would start screaming "Safari is broken! It doesn't open the documents that I'm downloading anymore!")
gnasher729 is offline   0 Reply With Quote
Old Jun 1, 2011, 09:45 AM   #34
jonnysods
macrumors 68030
 
Join Date: Sep 2006
Location: Aussie living in Canada
Wirelessly posted (Mozilla/5.0 (iPhone; U; CPU iPhone OS 4_3_3 like Mac OS X; en-us) AppleWebKit/533.17.9 (KHTML, like Gecko) Mobile/8J2)

Interesting to see Apple start to get into this issue now the way the PC world has to chase it's tail.

Friggin hackers.
__________________
Sodagorn Media
www.sodagorn.com
jonnysods is offline   0 Reply With Quote
Old Jun 1, 2011, 11:03 AM   #35
res1233
Banned
 
Join Date: Dec 2008
Location: Brooklyn, NY
Quote:
Originally Posted by whustedt View Post
do you think this will be failsafe when you're using a standard-account?
normal system-updates do not work when you're no admin.
(even though you can activate it in system prefs)
No matter what account type you're running, the system still has the right to do anything with your computer it wishes. It's probably just a process running in the background as root once a day.

Quote:
Originally Posted by roadbloc View Post
Oh don't be so pedantic. You knew what I meant.
It doesn't matter if he knew what you meant. Misinformation is still misinformation regardless of what you intended to say. Nowadays there are not that many people who know the difference between a virus/trojan/worm/spyware (yes some people even confuse spyware for viruses).
res1233 is offline   0 Reply With Quote
Old Jun 1, 2011, 11:39 AM   #36
mcdermd
macrumors regular
 
Join Date: Mar 2004
Quote:
Originally Posted by gnasher729 View Post
This is very easy to demand, but you haven't thought through the consequences. (The main consequence being that all users including you would start screaming "Safari is broken! It doesn't open the documents that I'm downloading anymore!")
Wrong. I turn it off first thing for myself and any other person who asks me to set up their system for them. I've been doing it since Safari 1.
__________________
Vintage http://www.applefool.com
mcdermd is offline   1 Reply With Quote
Old Jun 1, 2011, 11:45 AM   #37
roadbloc
macrumors 604
 
roadbloc's Avatar
 
Join Date: Aug 2009
Location: UK
Quote:
Originally Posted by res1233 View Post
It doesn't matter if he knew what you meant. Misinformation is still misinformation regardless of what you intended to say. Nowadays there are not that many people who know the difference between a virus/trojan/worm/spyware (yes some people even confuse spyware for viruses).
As well as a specific thing it is also a generic term. You can be strict to the definitions and call it 'malware' just to ram home that "OS X has no viruses" to everyone, but the rest of the home users will still call it a virus, be it malware, spyware, trojan, worm etc. We know that OS X doesn't actually have any known viruses thank you. It's a generic term.

Say what you wish, OS X has what people know as an 'antivirus' built in.
__________________
roadbloc is offline   0 Reply With Quote
Old Jun 1, 2011, 12:26 PM   #38
silentnite
macrumors 6502a
 
silentnite's Avatar
 
Join Date: Apr 2009
Location: Outer sight.. Outer mind
Now that's what I call taking one for the team. Seems to me apple was on the ball. Good to know
silentnite is offline   0 Reply With Quote
Old Jun 1, 2011, 01:20 PM   #39
Žalgiris
Banned
 
Join Date: Aug 2010
Location: Lithuania
MacRumors ad lovers please change the title so it makes sense. It doesn't update daily, but checks for updates daily. We all know very well that there wil be nothing to update.
Žalgiris is offline   0 Reply With Quote
Old Jun 1, 2011, 01:54 PM   #40
newfoundglory
macrumors 6502
 
Join Date: Nov 2007
Quote:
Originally Posted by mcdermd View Post
And yet they keep "Open 'safe' files" around in Safari. Get rid of that already.
I agree!!!! What on earth were Apple thinking. This is the cause of the current mess, that one ********* check box!!

They address the problem, but not the cause - not impressed one bit, Apple
newfoundglory is offline   -1 Reply With Quote
Old Jun 1, 2011, 01:54 PM   #41
mscabot
macrumors newbie
 
Join Date: Jun 2009
Only one way

No software of any kind can be installed on your mac except thorough the App store. That puts an end to malware on the mac full stop. I know that is unacceptable in a lot of ways but I think it is the future. The other way is to have all applications that will be installed out side the app store be issued a secure certificate that phones home when installed and every time it starts. If the app is tampered with the cert becomes invalid and the app won't run. If the cert isn't valid the application can not be installed. This will make it harder to create malware, but not impossible. If a widely installed application is infected with a virus the app can be disabled be revoking the cert, and not re-certified until the vendor fixes the problem.
mscabot is offline   0 Reply With Quote
Old Jun 1, 2011, 04:18 PM   #42
notjustjay
macrumors 603
 
notjustjay's Avatar
 
Join Date: Sep 2003
Location: Canada, eh?
Cue new virus that pretends to be a malware update file, causing it to automatically be downloaded to millions of Macs, in 3, 2, 1.....
__________________
.
notjustjay is offline   -2 Reply With Quote
Old Jun 1, 2011, 04:28 PM   #43
MacMan86
macrumors 6502
 
Join Date: Jul 2008
Location: UK
Quote:
Originally Posted by notjustjay View Post
Cue new virus that pretends to be a malware update file, causing it to automatically be downloaded to millions of Macs, in 3, 2, 1.....
Uh... No.

The updater will be looking for information hosted on Apple's servers. The information is stored in a plist file (called XProtect.plist). A plist file is not executable. Never going to happen.
MacMan86 is offline   0 Reply With Quote
Old Jun 4, 2011, 09:33 PM   #44
saberahul
macrumors 68040
 
Join Date: Nov 2008
Location: On my iPad
Soon they will need to update this page to remove the bottom most left tile.
__________________
iPhone • iPad • MacBook Pro
saberahul is offline   -1 Reply With Quote
Old Jun 4, 2011, 09:37 PM   #45
GGJstudios
macrumors Westmere
 
Join Date: May 2008
Quote:
Originally Posted by saberahul View Post
Soon they will need to update this page to remove the bottom most left tile.
No, because it still doesn't get PC viruses.... or Mac viruses.
GGJstudios is offline   0 Reply With Quote
Old Jun 4, 2011, 09:38 PM   #46
LegendKillerUK
macrumors 6502
 
Join Date: Apr 2010
Quote:
Originally Posted by MacMan86 View Post
Uh... No.

The updater will be looking for information hosted on Apple's servers. The information is stored in a plist file (called XProtect.plist). A plist file is not executable. Never going to happen.
Actually, Yes.

A UI could easily be made to ask the user to update their defintions. It could easily lie and say it was unable to connect to a server and therefore you must press OK now to do it.

Average user goes, Oh, Apple needs an update, clicks ok and boom. Infected.
LegendKillerUK is offline   -1 Reply With Quote
Old Jun 5, 2011, 05:24 AM   #47
MacMan86
macrumors 6502
 
Join Date: Jul 2008
Location: UK
Quote:
Originally Posted by saberahul View Post
Soon they will need to update this page to remove the bottom most left tile.
It says:
Quote:
It doesn't get PC Viruses
That will never be incorrect. Mac OS X will never get PC viruses because it's a different architecture. You can't run a .exe file on a Mac and that's why it's instantly impossible. Further, a virus targets a specific vulnerability in the code that makes up an OS. Mac and Windows have different codebases (obviously they're written differently) so a virus that's written to infect Windows could not infect a Mac


Quote:
Originally Posted by LegendKillerUK View Post
Actually, Yes.

A UI could easily be made to ask the user to update their defintions. It could easily lie and say it was unable to connect to a server and therefore you must press OK now to do it.

Average user goes, Oh, Apple needs an update, clicks ok and boom. Infected.
Actually, No.

That would be a trojan, just like MACDefender or any other kind that is using social engineering to install a malicious payload.

What the OP was saying was that the Apple updater would be tricked into downloading some malware instead of the definitions file, execute this malware and then become infected, making it a virus as it required no user interaction.

This could never happen as the OS does not execute the definitions file, it reads it.

I'll say it again, never going to happen.

Last edited by MacMan86; Jun 5, 2011 at 05:42 AM. Reason: Multi-quote
MacMan86 is offline   0 Reply With Quote
Old Dec 13, 2012, 05:36 PM   #48
sainsburys
macrumors regular
 
Join Date: Jun 2012
Location: Poland
As I understand correctly, you don't need to run some "Malware Test" it's all doing automatically yes?
__________________
MacBook Pro@2012. My first Mac.
iPhone 4. My first iPhone.
iPhone 5S.
iPhone 5C.
sainsburys is offline   0 Reply With Quote
Old Dec 13, 2012, 05:42 PM   #49
dukebound85
macrumors P6
 
dukebound85's Avatar
 
Join Date: Jul 2005
Location: 5045 feet above sea level
Quote:
Originally Posted by sainsburys View Post
As I understand correctly, you don't need to run some "Malware Test" it's all doing automatically yes?
correct
dukebound85 is offline   1 Reply With Quote

Reply
MacRumors Forums > News and Article Discussion > Mac Blog Discussion

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Similar Threads
thread Thread Starter Forum Replies Last Post
Apple Enforces Adobe Flash Player Security Upgrade with Updated Malware Definitions MacRumors Mac Blog Discussion 51 Feb 15, 2014 12:04 PM
No daily email updates for subscribed forums steve-w55 Site and Forum Feedback 2 Nov 16, 2013 11:02 AM
Apple Updates OS X Anti-Malware Definitions to Block 'Yontoo' Adware MacRumors MacRumors.com News Discussion 66 Mar 26, 2013 09:22 AM
Apple Releases Java Updates for OS X, Including Malware Removal Tool MacRumors MacRumors.com News Discussion 59 Feb 21, 2013 02:34 PM
Apple Quickly Updates Malware Definitions to Detect New SMS Scam Trojan MacRumors MacRumors.com News Discussion 94 Dec 26, 2012 03:39 PM

Forum Jump

All times are GMT -5. The time now is 04:12 PM.

Mac Rumors | Mac | iPhone | iPhone Game Reviews | iPhone Apps

Mobile Version | Fixed | Fluid | Fluid HD
Copyright 2002-2013, MacRumors.com, LLC