Should Mac Users Run Antivirus Software? 450
adamengst sends in an article from TidBITS in which Macintosh security expert Rich Mogull explains why he doesn't use antivirus software on the Mac, and why most Mac users shouldn't bother with it either. The article also touches on the question of when an increasing Mac market share might tip it over an inflection point into more active attention from malware writers. (Last month Apple had 14% of PC sales, but 25% of dollar value.)
Nay! (Score:5, Funny)
Say it isn't so. Everyone knows macs are just as cheap as PCs!
Re:Nay! (Score:4, Informative)
Eh, I don't know about that (Score:5, Interesting)
Now that aside, the other problem I find is that while their prices are often comparable for a system at a given point, they don't actually offer what many want. The towers are a good example. Yes, actually, their towers are fairly competitive pricewise when you spec out a similar Dell workstation with dual quad cores, lots of registered ECC RAM capacity, and so on. However the problem is what if I don't want that? What if I want a single quad core (or dual core), non-ECC RAM, and so on? There's plenty of cases where this is a much better option.
Let's say I don't have software that scales up to 8 cores. This is fairly common these days. So let's say I'd like a quad core with 4GB of RAM. If I go the Apple tower route, $2800 is the price for that. That isn't unreasonable, since it is a single Xeon, with support for a second one, and registered, ECC RAM, which is really expensive. However, Gateway (or I suppose MPC now since they bought Gateway's business division) would be happy to sell me a E-6610Q with similar specs (HD, video, etc) for about half that ($1300).
Now the thing is, the sort of system I listed is quite useful. We buy a good number of them here (that's why I know about it) for research. There's a lot of cases where someone wants a system that has a good processor, plenty of RAM (we often get 8GB even, which is still cheap) but just really doesn't have use for a full on workstation class system. This is even more true now that processors have gone multi-core. While 8 cores is great, there are just a lot of things that are hard to write to make use of that many. So if you aren't using more than 4, the second processor, and all the associated cost, isn't useful.
That is the main reason I'd say Apple isn't competitive on price. A mid range tower is something that there is a whole lot of market for, but they just don't sell. If you don't want an all in one, your only option is super high end. If you don't have a need for the extra hardware, that is just money wasted.
Same goes for people at home. For example I like to play games. An all in one wouldn't work for me. Sure, I could get a similar monitor (24" widescreen), CPU (Core 2 Duo) and RAM (4GB) to what I have. However I can't get the graphics card I have, and I can't ever upgrade it. That is a show stopper right there, since the core of the system will last a good deal longer than the video card. It'd be a waste to buy a new system when only one component needs updating. Likewise the monitor will outlast the system, again a waste to upgrade.
That's my objection to the argument that Apple is a good value for equivalent hardware. That is true in a narrow sense sometimes, but given that they don't have a solution for a large number of people, it isn't true over all.
Re:Eh, I don't know about that (Score:5, Interesting)
I'm speaking from years of experience here.
As for price competition, they are competitive. What you're talking about is selection. They aren't competitive in selection. Often a lack of finding what you want ends up with you either spending money on stuff you don't need or getting less than you wanted. Hence the complaints.
OTOH, there's a lot to be said about less selection -> better OS stability. Microsoft's been complaining about the variety of machines they've had to support for decades now.
The selection's the price you pay for a Mac. The price argument is unfair and inaccurate. But on selection, I doubt any mac user's going to argue with you
Re: (Score:3, Insightful)
Your argument basically boils down to, "Apple doesn't make a be-all, end-all, completely configurable, open-ended, CHEAP system, and I don't like them."
I just don't see the point in arguments like, "I don't like Subaru because I don't need all-wheel drive." Why say you don't like something when it's not even something that's in your market? The Mac Pro and a dell tower ar
The problem is (Score:5, Interesting)
1) There is a major segment of the market that Macs don't cover. Basically anyone who doesn't want an all-in-one, but doesn't want or can't afford a high end workstation. They have no offerings for that market. If I was the weirdo for wanting that, I'd be ok with it, but that is the major market out there. There's a whole lot of reason to want a computer like that. For example in our instructional labs, we can't afford high end workstations, not when we are getting 50 computers, nor do we have a need for that power. However an all-in-one is a bad idea. Why? Because monitors last a lot longer than computers. One of our labs has undergone two upgrades to the computers but is still using the same monitors. Eventually they'll have to be replaced, but LCDs last a good long time.
This is a real good thing, because generally it is a situation like "You have $50,000 to spend on the lab." Ok, that's $1000 per computer. Well, $150 not spent on a monitor is $150 that can be spent on a faster processor or more memory and so on. No reason to replace a perfectly good monitor just because the computer is out of date. It is a non-trivial part of the budget that would have to be spent on even a fairly small monitor.
2) All the arguments that macs are "good value for the money." No, they aren't for most people. Most people don't want a workstation, if they did, that'd be the big sales from most companies. However there is very little software that can even make use of all that, let alone people who use it. It isn't a good value to most people so the argument is bogus. It is like trying to argue that an BMW R8 is a "good value" for a normal car. No, it's not. It may be a good value for a performance luxury car, however most people aren't after that. While it may well justify it's $100,000+ price tag, that doesn't change the fact that it is $100,000 and more car than most people need or can afford.
That has always been one of Apple's value problems is this bundling of things people don't need. It isn't that nobody needs them, just that most peopel don't need them. However it raises cost a lot and thus makes it not a good deal for the majority of people. I wouldn't call a Precision Workstation a good deal over all either. If you need those features, ok you get a good price for them, but it still is high priced. You pay a big premium for things like 2 processors and more than 8GB of RAM. It isn't a case where 8GB = $X and 16GB = $2*X. It is more like 16GB = $5*X or $8*X. You aren't doubling the cost to get these things, you are more than doubling it. What's more, they don't double performance. 8 cores are not twice as fast as 4 other than very special cases. As I said, there's precious little that can use all that, and even some of the apps that can (like say a good DAW) don't really have a use for it in most situations. Likewise getting more RAM doesn't help performance unless you actually have apps that need it. Just having more sitting there doesn't help.
There are plenty of cases with PCs where I give the advice of "Don't go above this unless you really need it because it incurs a big premium." The problem with Macs is, you just don't have that option. You want a tower? You get a bunch of expensive hardware, need it or not. Thus it really isn't a good value for most people.
Re:Eh, I don't know about that (Score:4, Insightful)
So where does the price difference come from? A slightly better graphics card, a couple of rarely-used ports, a slicker design, a few ounces less weight, and a handful of bells and whistles like the backlit keyboard. Sure, the MBP is a good deal if you need all those (for example, the weight difference might add up if you're bench-pressing entire stacks of laptops)... but most people will do just fine with the competing models.
Re:Eh, I don't know about that (Score:4, Insightful)
The ability to run OSX (legally.)
(Let's ignore aftermarket stuff like the virus scanner, office, etc)
Yes, you may not NEED all of that. If you don't you're welcome to buy the HP at half the price. Just don't say/imply that the MB Pro isn't worth the 2K they're asking. No-one is saying you have to buy Apple. Again: if you can't see the value in the package, you are most likely not the target market.
Re:Eh, I don't know about that (Score:5, Informative)
Now this isn't critical, and I'm certainly not saying we've never bought aftermarket upgrades. However, it is a real consideration since one of the reasons people try to sell you on Macs is support. They say it is easier since the whole deal comes from one vendor. Ok, there's a lot to that, but you start to break that if you add aftermarket hardware. It isn't that you'd invalidate the warranty on the existing Apple hardware, but that if the aftermarket piece breaks, they can't help you.
Not a major issue when you have a single computer, but when you have 500, it can get problematic. Much better to have a single point for support as often as possible. However if you are having to order aftermarket upgrades for every single box due to the cost, well you don't get to have that.
Re: (Score:3, Insightful)
We have about 60 PC's and 2 Mac's (for graphic designers) which has pretty much been cut down to 1 Mac (the other just sits in the corner as a PC is preferred for web design). We have in our history had a imac failure rate of 50%, that is to say that 2 out of 4 imac's have broken beyond usefulness. The first had a HDD go, warranty repair took 3 working days, the second had the PSU go which took 7 working days for the store to get the part in. Now I can fix a HDD or PSU in 1/2 and
Re: (Score:3, Insightful)
Who modded this nonsense up? I've been building computers for several years and I only use high-quality parts, but the most expensive is not necessarily the best. A PC built of high-quality parts is still about $250 - $300 dollars cheaper than a Mac of equal power. Seriously, go check out a Mac, write down how much it costs and then go compare. (And yes, to find the high-quality parts, you need to research customer ratings at more than one site, which will
Re: (Score:3, Interesting)
My girlfriend's Dell laptop for example - the plastic feels cheaper, it's bigger and clunkier than more expensive systems, there is some kind of high-pitched inductor/capacitor chirp when you move the mouse around which is incredibly irritating, the screen has a very poor viewing angle, the speakers are too quiet to watch a DVD with when there's traffic on the road outside, etc. etc. I'm not saying it's
Re: (Score:3, Interesting)
At the time I bought it, my band mate purchased a Windows machine because it was more economical. He saved somewhere between $350 - $500, compared to my Mac purchase, which was $1300.
In the 10 years that have passed, he has purchased at least four or five new computers, plus sound cards, video cards, it's always something. Don't know how many weeks a year he spends re-installing his system, running antivirus, try
Re:Nay! (Score:5, Informative)
I know your just being funny, but I figured I'd explain it anyway...
An awful lot of PCs are those $300 dell specials. Apple doesn't make products that crappy, but Dell moves boatloads of them... so Dell picks up a lot of unit sales eroding Apples 'market share by unit', but because the price is so low and Apple hangs onto more of the higher value sales, the erosion effect of these low end units on their 'market share by price' is considerably less.
Lets compare apples and oranges
I sell oranges at $1
I sell apples at $1
As you can see "Apples are no more expensive than oranges."
I also sell rotten oranges at 50 cents.
I don't sell rotten apples.
So if I sell 100 apples, 200 oranges, and 200 rotten oranges:
Apple has 20% of the market but 25% of dollar value.
market = 100/[100+200+200] = 1/5 = 20%,
dollars = 100/[100+200+200*0.50] = 1/4 = 25%
That's essentially whats happening here.
Re: (Score:3, Insightful)
Why not just buy a bunch of parts online and have them strewn around the floor? You'll get even more power for your money since you won't need a case, or case fans.
If you value things like size and noise, then the Dell is not better than the mini.
Re:Nay! (Score:4, Informative)
Are you trying to act stupid or can you really not see the point in having a small PC? A mini comes in a small, neat, quiet package. You think if I can afford a nice large living space, I'm going to fill it with monstrosities just for the hell of it?
Re:Nay! (Score:5, Informative)
You'd be assuming that someone who buys a mini would be pleased with a loud bulky cheaply built tower why?
And for $600 you can get a dell that is a lot better and it has slots to add video and other cards to it.
A lot better? Give me a break. I challenge you to put together a Dell for $650 (or $750 including monitor, since with a lot of their budget PCs you can't unbundle it) that matches the mini's specs. I challenge you.
It must have bluetooth, 802.11g wifi, firewire, at least 4 usb ports, gigabit, optical audio in and out, DVI video out, Core2Duo w/ 2MB cache, 1 GB of RAM.
The mac mini only has integrated video so GMA950 is what you need to meet or beat there, and the small slow laptop hard drive should be a nobrainer to beat too.
Since its a PC not a Mac, I'll forgive you leopard, but you'll need at least Home Premium, no Home Basic. And make sure it comes with a restore disk.
And even if you managed to do it, then ask yourself... can you also make it virtually silent and fit into a space about the same as a stack of 5 CD jewel cases?
I'm not saying you can't get a good value for $600 from a dell. And theres no question that $600 spent the right way can result in a PC that's better than a mac mini for, say, games, for example. But spec for spec, Apple is very good value, provided your needs line up with the features they offer.
I agree there are some big gaps in the apple line up... where is the fast core 2 duo tower that I can put expansion pci cards into for around $1200 for example. The imac is good value and the right specs, but the wrong form factor since I can't expand it... that's why I still use a PC tower. My laptop otoh, which I don't require to be expandable, is a mac.
With mac's expandability isn't their market; except at the extreme high end. That tends not to go over well with the 'tech crowd' like the one here, but in practice, joe sixpack never upgrades his PC anyway nor plays FPS shooters, so for them this gap is not much of an issue.
Re: (Score:3, Informative)
I accept.
let's compare shall we. http://www1.ap.dell.com/content/products/features.aspx/desktops_good?c=au&cs=audhs1&l=en&s=dhs [dell.com]
vs
http://store.apple.com/133-622/WebObjects/australiastore.woa/wa/RSLID?nnmm=browse&mco=7B723681&node=home/shop_mac/family/mac_mini [apple.com] for $50AUD
Re:Nay! (Score:5, Insightful)
Your link took me to a page featuring the inspiron line, from a A749 to a A1199 pc. Which are you talking about? I assume you've decided to compare to the A1199 because you mention it being only 50 more than the A1148 mini-superdrive.
So, right off the top, you've gone way outside the paremters for the challenge. The mac-superdrive is like the black macbook; it -is- overpriced for what you get relative even to the other macs. But ok, I'll run with it...
lets compare shall we:
bigger HD - check
better cpu - check
ram - check (although Vista needs more than Leopard, so that's a bit of a wash)
3d card - check
lcd incl. - check
dvi out - check (although its not clear the incl. lcd actually supports dvi)
os home premium - check
bluetooth - fail
wifi - fail
firewire - fail
gigabit - fail
optical audio connectors - fail
Hmmm... overall, I'd call that a fail. That's not to say its a bad unit, but it doesn't exactly come close to meeting the dell challenge I issued.
lets look at the base line mini "combodrive". for $50 less dell gives twice the hd space and a 19" monitor
That dell also ships with Vista home basic; there goes your $50 less. And its still 8x times the size. Getting that down is worth 175 (the value of an LCD) to a lot of people.
And the HD space; the value of that is pretty small even if you need it. And not everyone needs it. Its worthless if you don't fill it. I recently upgraded my parents PC, and after 6 years they still had less than 20GB of data (and that was after ripping their CD collection; so they won't keep growing at that pace unless they buy a video camera and start making movies). So for them whether the new unit has 80, 160, or 320 is pretty much a non-issue. They'll benefit from a faster CPU, they'll benefit from wifi... but not a bigger hard drive. And guess what, the mini is targeted at people like my parents. Its not a power-users PC.
so all you are paying for is the wank factor, thank you very much.
You must mean to say "instead of a faster CPU, more ram, bigger hard drive and bundling a cheap as dirt monitor" your dollars are instead being directed towards "faster networking, firewire, wireless network, bluetooth, and a much quieter and smaller form factor", at about the same price.
please stop spouting nonsense about mac's competing with pc's on price.
I would if you'd show me a PC with the -same- specs as a mac mini that's significantly cheaper. Showing me a PC which trades a bunch of the specs away in exchange for a faster CPU and bigger hard drive at the same price point just proves my point.
After you cram all those missing features back into a dell its going to cost quite a bit more. So you can either drop the LCD to bring the price back down, and then you've still got to credit the mac mini some $$$ for the value of beign 1/8th size... so there goes the value of your cpu/hard drive/ram upgrades.
At the end of the day the mac mini is very price competitive. But its true the specs it focusses its value proposition on aren't where dell emphasizes its value.
Re:Nay! (Score:4, Insightful)
For my purposes: yes. For people like my parents: No.
They were just about to get on the CD writing bandwagon to make mp3 CDs... but now they have flash mp3 players, and flash drives, so they don't need them. I think they've burned like 2 CD's. Hell, other than making bootable OS CDs **I** don't burn many CDs or DVDs; I prefer flash drives and external hard drives.
That said, yeah I think Apple should refresh the mini specs. The price diff to a dvdrw is what? maybe 3$.
The cheapest Dell doesn't even sell a 1.83GHz Dual core processor.
Au contraire...
http://configure.us.dell.com/dellstore/config.aspx?c=us&cs=19&l=en&oc=DDCWFA1&s=dhs [dell.com]
or
http://configure.us.dell.com/dellstore/config.aspx?c=us&cs=04&kc=6W300&l=en&oc=brcw2cz&s=bsd [dell.com]
Quite correct. The cheapest Dells I can find feature a 1.6Ghz CELERON, with options to UPGRADE to a 1.8 or 2.0 GHz Core 2 Duo.
You need to compare something other than the cheapest mac mini. It's antiquated. You can't find a PC that incapable and slow, regardless of Bluetooth and wifi.
Look again. The Vostro above features:
1.6GHz Celeron
512MB RAM
DVD-ROM - that's right NOT EVEN a combo drive!!
80GB Hard drive
You were saying?
Granted its 299 not 599. But then its 10x the size, half the ram, not even a combo drive, no wifi, no gigabit, no firewire, no bluetooth,
Also ditch the Bluetooth and Wifi in a desktop. It's just not needed and can be tossed in with a USB key. It just makes for a stupid comparison. Of course no PC manufacturer offers it in an OEM package. It's pointless.
Really? I won't buy a desktop without wifi anymore. USB dongles are a pain in the ass, and sometimes my PC isn't in a place where a cable is convenient; enable wifi, and boom I'm up and running.
The people buying macs care about style, they care about cable clutter - the fewer the better. wifi also means they can put it anywhere... I know people with a mac mini on their kitchen counter. All they had to do was set up a screen and 2 power cords. Keyboard and mouse (and the mini for that matter) are in a drawer. When they want to use it they pull the kb/mouse out of the drawer. Try doing that with a cheapie Dell with anywhere near the same level of elegance.
Some people care about THAT stuff more than they care about a couple extra GHz or writing DVDs. Hell; I'd buy a mac mini for that purpose or as a 2ndary PC for the house. I don't even need a dvdrw in it; I have other machines that can burn dvds that odd time it comes up.
Yes (Score:4, Informative)
Long answer:
If your Mac runs MS-Office software or other cross-platform software that has infectable data files, you are vulnerable to some Macro viruses.
If your Mac can run MS-Windows binaries you may be vulnerable to some Windows viruses.
If your Mac hosts files on a mixed network your Mac should protect itself from hosting infected files.
So, unless you've got an all-Mac/no-Windows network or your Mac doesn't run or host Windows files, AND you do not run any cross-platform files that have infectable data files, you should protect yourself and your network.
Re: (Score:3)
Re: (Score:3, Funny)
Thanks, Microsoft, you're always looking after the little guy!!
I do (Score:5, Informative)
Good idea (Score:5, Insightful)
So I think it is a good idea for Mac users to run AV scanners, and other security tools, just in case. Even if you've never found anything, better to have a good security policy than to end up being sad later on.
Think of it like having a house in a good neighbourhood: Just because your place has never been broken in to, doesn't mean you should leave the door unlocked. Sure it might not be common where you live, but that doesn't mean it is impossible. Practise good security and it isn't a problem.
I take the same view with computer security. I mean for that matter I've never had a virus on my Windows system, and I don't find it likely that I will. I don't do the sorts of things that are going to get you infected. However, I am going to be safe about it, rather than being sorry that I was arrogant in assuming my knowledge made me invincible.
Re:Good idea (Score:4, Insightful)
Re: (Score:3, Insightful)
Ya well turns out they can if you are dumb enough to have a world writable FTP server with the root directory of /, which is what this idiot had done. I don't even know that it was being used for anything other than a public warez FTP, but still, the point is MacOS couldn't defend against extreme stupidity.
How on earth would AV catch this?
Re:Good idea (Score:4, Insightful)
That was the point he was trying to make. The point he actually did make was that being stupid is a huge security risk. Unfortunately, AV can't cure stupidity, it can only give you the feeling that you are invincible...
Re: (Score:3, Interesting)
Recently I converted a friend to the Mac. She was at her brother's house, and wanted to download pictures off his camera. He offered to get the CD for drivers, and she said s
Re:Good idea (Score:5, Insightful)
If you're dealing with users setting up poorly configured FTP servers, no AV scanner I've ever seen is going to keep them from doing that.
That wasn't my point (Score:3, Insightful)
Re: (Score:3, Insightful)
However, my Macintosh and my Ubuntu box are inherently more secure than Microsoft Windows for one specific reason.
The Mac and Linux box were sent to me with no active root account. Unless I activate the root account myself, and if I know how to do that I probably know enough to not want to, I'm using a standard user account with restricted privileges. All the software (except the system stuff) is designed to run on standard user accounts. If something wants privilege escalation, it can either try an e
No (Score:5, Insightful)
15 years of no viruses, no malware, etc. The secret? No secret, just avoid being stupid. AV software is like driving a car with the intention of crashing it all the time, but wearing a seatbelt and thinking everything's OK.
Re:No (Score:5, Funny)
And you presumable know this because you've never had a virus detected. Wait a minute...
Re: (Score:3, Informative)
Viruses on a Mac? (Score:2)
I already *don't* run AV on a PC (Score:5, Interesting)
Well tell me why I really need to? I mean I have it installed, but I certainly don't have that stupid active scanning thing turned on. So when I open a file, my computer really needs to open it twice? Bull.
I get my mail from gmail (so attachments already scanned there). I use FireFox (so little chance of infection there). I do scan things that might possibly contain a virus -- anything from a usenet newsgroup or from P2P (which is only a few executables ever anyway); And I do let it scan the whole thing once a week (and never finds anything I didn't already know about, of course).
And you know what? My old computer running Win2K runs faster than most any new computers out there with AV turned on. To date, I've never been bitten by any viruses.
Re: (Score:3, Funny)
Don't taunt the IT gods. Their wrath is mighty and swift...
Re: (Score:3, Interesting)
Still not confident enough to go commando like you, though.
Comment removed (Score:3, Insightful)
Re:Then Rich Mogull Ain't No Security Expert (Score:5, Insightful)
Why should I spend my time, money, and CPU cycles on running AV on a system that has an essentially 0 rate of virus infection? I've got a firewall on my network, *and* I've got the host firewall running on my Mac. I read my email in GMail and almost never open documents in Office, except those that come thru my work mail (via Entourage), which is scanned at the corporate level anyway.
I back up my files, so I'm not at (too much) risk for data loss.
Maybe once there are *real* viruses out there for the Mac, I will reevaluate. Maybe I will be unlucky, be one of the first ones to be hit by a Mac virus in the wild and have to spend a few hours reinstalling all my apps and restoring from backups. But so far, if I ran AV, I'd just be investing real time and money into defending against an all-but-nonexistent threat. The cost/benefit just isn't there.
Cheap? Not at all. (Score:5, Informative)
By any reasonable definition, no, they don't. There have been a couple of extremely limited proof-of-concept viruses in the past few decades, which have infected approximately no one.
But it's not cheap. The cost is, in fact, huge.
Antivirus software is incredibly invasive, mucking about to do secret things in kernelspace, inserting itself into nearly every action performed by a machine. It takes substantial resources to accomplish this dubious goal, and alters the system in unpredictable ways.
The "more security is always better" rationale that you propose is too simplistic. Security measures must always be evaluated by comparing their benefits against their costs. Your estimation wildly exaggerates the (nonexistent) benefits of antivirus software while completely glossing over its substantial costs.
Antivirus software is categorically a foolhardy and dangerous thing to ever run on one's machine at all. The only strange edge case in which it represents an improvement is if one is using software like Windows, which is so wildly hole-ridden that security is expected to come from third parties. But even there, the correct solution is not to add more layers to shore up a quicksand foundation, but to simply replace it with a sane operating system.
Re:Then Rich Mogull Ain't No Security Expert (Score:5, Interesting)
Re: (Score:3, Interesting)
So true. People don't seem to understand how antivirus software works.
A while ago, we were one of the first to be hit by those trojaned flash banner ads that have started popping up everywhere. Our users were posting comments like "don't you run antivirus?" Like there is a single AV product in the world that can identify a flash banner that was maliciously constructed.
I ended up writing m
Re:Then Rich Mogull Ain't No Security Expert (Score:5, Insightful)
If a virus is sophisticated enough to spread without user interaction chances are it spreads faster than definition files (e.g. SQL Slammer).
I have run without anti-virus for about 15 years or so and I have only been infected with two viruses. One from the MS-DOS days by leaving a disk in a computer and another that wasn't strictly a virus but malware from mistyping a domain. Malware that anti-virus wouldn't have detected or prevented anyway.
It seems like there are only two cases both of which anti-virus is pretty much useless for sophisticated users: 1) The virus is old. In which case it would require manual intervention to install into your system since a patch has been released. or 2) The virus is new. In which case the definition files won't catch it anyway. (yeah, I know heuristics.. but come on they never really work beside throwing false positives).
Re:Then Rich Mogull Ain't No Security Expert (Score:5, Informative)
Yes there is a risk of getting a virus on the internet. However, in my opinion, it only helps people who are prone to clicking omgponies.exe.
Comment removed (Score:5, Insightful)
Re: (Score:3, Informative)
The "virus" to which Sophos refers was an incredibly obscure little trojan that affected a vanishingly small number of people, required explicit user action to spread, was very quickly patched by Apple, and never did anything in the first place other than attempt (mostly unsuccessfully) to spread itself. Total harm done: zero.
In fact Symmantec's own alarmist page describes the total nu
Depends on user (Score:3, Interesting)
If a user is careful about not downloading programs from random sites and installing those, as well as careful in opening email attachments.. i think one should be good to go without antivirus on most of the OS's not only OS-X
OTOH, if one just open every email attachment (s)he gets.. then even antivirus can not help sometimes (e.g. against some new vulnerability)
How much higher do you want? (Score:2)
Re: (Score:3, Insightful)
You'll hear about it. (Score:2)
I have ClamXav installed, and run it every now and then, and it never finds anything (apart from warnings about oversize archives - i.e. large zip files). It almost goes without saying that when a genuine malware threat hits the OS X platform, it will be all over the news - or at least the news I read, anyway.
Just like Linux (Score:5, Insightful)
Just because it won't effect you doesn't mean it won't effect someone you know. Now here's where everyone will start saying, "it's teh windoze uzer's own fault! Dey shouldn't be so dumb!" but seriously people, if you want to show people that Unix is a better choice, show them by helping, not by hurting.
Yes (Score:2)
I wrote this but first, I don't know what I was thinking.
"Why wouldn't you? Cause the risk is low? Thats like having sex with a girl and not wearing a condom cause the risk is low of catching something. You might as well put the extra layer of protection just as some sort of defense just to be on the safe side."
Re:Yes (Score:5, Funny)
doesn't hurt (Score:5, Interesting)
Why does marketshare really matter? (Score:4, Insightful)
Only if you'refrom the US (Score:5, Informative)
This is just a teeny-weeny bit unreal. Close inspection reveals that the cited article refers to US-based PC retail sales.
There is more to the world than the US. And there's more to sales than retail sales. Apple has much lower sales penetration in Europe and Asia, and it has much lower sales in the commercial sector. Apple might be on enjoying a renaissance, but don't be fooled by inappropriate statistics.
Wrong Question (Score:5, Interesting)
Bringing the Anti-virus & Registry Cleaner snake oil salesmen to the Mac isn't going to do anyone any good.
Having said all that I used to use clam but never reinstalled it when I move to Leopard...
OS X Server does by default (Score:5, Interesting)
Still, many people interact with Windows from their client Macs too, but not everyone. Windows is not a part of my life, for instance.
Apple obviously felt it necessary to include an AV suite for the server release. They've tailored it for the OS, so why not ship it by default with the client release as well? Perhaps because they feel it isn't necessary, and they're choosing to err on the side of fewer wasted cycles for the majority of their users? I suspect that if a bona fide threat to OS X ever does appear ClamAV will be made available for the client release via Software Update the next day.
Re: (Score:3, Informative)
You, sir, are incorrect. ClamAV is indeed *included* with OS X Server, but it is most certainly not "running by default". It is used as part of the mail server. It is an option you can turn on in the mail server settings, and it automatically checks email for viruses (SpamAssassin is also included) if activated.
This is because people use OS X Server to serve non-Macintosh clients, including Windows machines.
It does not check every
Re: (Score:3, Informative)
My bad for not being as clear as I should have been. I trust folks with mod points will
Comment removed (Score:4, Interesting)
Running AV to tick off a checkbox. (Score:5, Interesting)
One reason I can see putting AV on a Mac is so people (and companies) can check this box, saying that all their machines that handle customer data have antivirus protection installed, even if the utility is just triggered from a cronjob that does a scan down the filesystem for infected Windows files every so often.
Historically, before OS X, Macs did have some viruses, although relatively few of them were malicious. Before Word macro viruses became common, John Norstead's Disinfectant was one of the more used anti-virus utilities that offered not just scanning, but in memory protection.
Re: (Score:3, Interesting)
Virus scanners really are awfully invasive. If there's ever a virus signature for it to match then you can turn it back on.
Mac A/V needed !!! (Score:4, Informative)
People who know how to use their computer... (Score:3, Insightful)
AV is an attempt at a technical solution to a user stupidity issue. If you don't do dumb shit, you don't get infected.
I'm not talking about worms (which AV does nothing about). I'm talking viruses, trojans, spyware, and the like.
You're kidding, right? (Score:5, Insightful)
pshaw (Score:3, Funny)
And? (Score:3, Informative)
Don't run programs of which you don't know the origin (commercial games from big store - yes, hacked games from random illegal Internet site, no)
Don't let programs run automatically ever (autorun, activex in browser without prompts, email attachments etc.)
Don't run programs just because something in an email, on a webpage, on a game, tells you to - double check first.
Use only trusted, well known mediums to obtain the things you want, whether that's a game magazine or a download site.
You DO NOT NEED something running 24/7 and taking up CPU all the time, intercepting every disk access to stop you getting a virus. You just need to follow some simple rules. My girlfriend manages them with little to no training - never had a virus. If in doubt, you ask someone in the know. They will tell you if something is safe and should be able to do so over the phone or IM it's that easy. They don't even need to SEE the file itself or its contents, they can tell from your description of where it came from.
You only need antivirus if you run a network where the users deliberately "forget" their training. Unfortunately, that's most corporate networks. Therefore most corporations do "need" it. That's their own problem for running systems that allow execution of arbitrary programs for normal users. It shouldn't be required EVER in a corporate environment unless they are on the development team. Bring back the good old days of "Press 1 for receipts, 2 for stock control, 3 for staff databases"... by restricting the interface, you restrict the possibilities.
Number of viruses I've had - zero. Number of viruses witnessed first-hand - hundreds of thousands. Number of machines cleaned for other people - hundreds. Number of antivirus programs installed on those computers - hundreds. Number of effective antivirus programs when used on novice user's computers? Zero. Number of antivirus programs installed on any OS on my own personal machines - zero.
What do I do when I need to check someone's computer? Free virus checkers RUN FROM KNOWN-GOOD, CHECKSUM-VERIFIED executables stored on READ-ONLY media of my own. See. The rules apply even then. Amazing, isn't it?
I have seriously removed more antivirus programs than the number of computers I've fixed. They are an absolute waste of time as they are only "after-the-event" - they hardly detect any "real" viruses, if they do detect them, they can't clean them or remove them effectively. And, besides, it's too late by the time an antivirus program spots something - it's already running. Most AV are easy for viruses to disable or fool anyway, so they are just false psychological reinforcement for novice users. Once users are SHOWN that the AV did absolutely nothing to stop the virus they just got, I ask them if they want to renew it next year (so that they remember come the time). I have dozens of people who ask me to remove it there and then and put something "that works" on. I tell them it doesn't work like that, but I can install a free antivirus and at least save them some money, if not save them completely from viruses.
It's amazing the amount of people I've dealt with who are shocked that:
1) The expensive antivirus that they've been paying every year for has never really worked properly and they've had viruses all along. Or hasn't updated in five years. Or says it's updating and isn't. Or says it's running and isn't.
2) The same expensive antivirus is useless at detecting some stuff and useless at removing anything (the amount of times I've run "clean" only to have the same message pop up again on another file, repeated ad inifitum). Cleaning from within an infected operating system is very difficult (I've done it successfully many times but never with an automated antivirus tool) and is only really any good if you absolutely CANNOT get the virus off any other way without losing data.
3) The same
It's called a "Disk Image" (Score:5, Informative)
False Sense of Security Trumps Logic (Score:4, Interesting)
What's my explanation for your perfectly good logic? Mac users have a false sense of security (see ensuing posts about Mac security totaling Herculean proportions).
Re: (Score:3, Funny)
I think slashdot Mac users are more vulnerable (Score:3, Interesting)
Re: (Score:3, Informative)
Aside from the fact that downloading a random binary from a website would not have execute permission, thats why mac apps are usually distributed in archives or disk images, even if they contain only a single file.
Re: (Score:3, Informative)
Re:I think slashdot Mac users are more vulnerable (Score:5, Informative)
Secondly they'd need to not realise that their
Thirdly they'd then need to enter in a username and their password(if they are even the account holder who knows it/remembers it) to give the software permission to alter critical files on their system - all while not seemingly realising that their file isn't opening in Word/text editor.
This kind of virus is akin to dragging all your files to the trash, emptying it and claiming it was a virus.
Now take the case of windows. "www.porn.com" is a perfectly accepted file name for an executable. It too can have a little icon of something pornographic. Meanwhile, all a Windows person need do is double click it and it's game over. (Or if you're a Vista user, you'd need to choose accept from a dialog window - which the OS has already trained you to click blindly.)
If you're comparing Vista to Mac OS 10.5, then the moment you received this ".doc" file, whether from an email attachment, chat or website, the OS will alert you when you're opening it to where the file has come from, what time you received it, from what program and even what user sent it to you - and most importantly what kind of file it -really- is. This particular attack vector has been addressed extensively. It will as a minimum stall or prevent the creation of a botnet using Mac OS computers.
Re: (Score:3, Informative)
Actually, my basic complaint is that in the default view for each OS, it's not intuitively obvious which icons represent files or links to files which are directly executable. None of the three OS has this as a feature, to the best of my knowledge.
With leopard, one feature you have is called Quick Look [apple.com]. QL shows you a preview of the selected file if it can read it. if it can't, it shows a bunch of metadata about the file, including it's type (Application, vs Microsoft Word Document to use the example mentioned earlier).
And before that we had column view. Column view shows you a bunch of metadata (yes, including file type) on the selected item - unless that item is a folder, than it shows it's file list in the next column over.
And before THAT we had
Re:It's called a "Disk Image" (Score:5, Informative)
Use a tool like little snitch, up you security settings, don't run as administrator, don't run random programs you find on the net and you'll be fine.
Re: (Score:3, Insightful)
Re: (Score:3, Insightful)
Re: (Score:3, Interesting)
Re: (Score:3, Funny)
It's called a waste of time and cycles. (Score:5, Insightful)
There's no reason not to build a nuclear bomb shelter either, except that most people don't need it, it won't work and it's a waste of money. Now that I think about it, there are more reasons to build a shelter than there are to run AV on modern *nix derivatives. AV programs are a terrible performance drain on the one system that needs it but is never really protected by it.
Re: (Score:2, Informative)
Leave out the word "not", and you have a more accurate statement. The only time one should run AV on a Mac is when the Mac is serving files to windows machines, and even then it's just a kludge to accommodate the never-fixed flaws of windows.
Re: (Score:3, Insightful)
Macs and Vista have an essentially similar security model, they make it somewhat harder to screw your system by accident. Not running as root is the best protection you can have, if you have that you will do a lot better than with A
Re:It's called a "Disk Image" (Score:5, Funny)
Re:It's called a "Disk Image" (Score:4, Funny)
My cursed great-great-great-great grandfather still swears at garlic and a crucifix, you insensitive clod!
And at the sun.
Re:It's called a "Disk Image" (Score:4, Funny)
Re: (Score:3, Informative)
The point was that its still an Archive Format. It's a file that contains a virtual file system & files within.
I don't know about you, but every A/V I've used in the past has a daemon process that will scan a file the moment it saves to the hard disk. All it would take is one single download (and Safari saves 'Disk Images' to the desktop by default -- no confirm. You click, and it downloads) to kill the A/V, possibly ev
Re: (Score:3, Insightful)
I've never played with antivirus programs on mac, but all of the ones i've used on windows systems have caused the system to slow down noticeably, and removing them gives you quite a nice speedup.
Aside from the fact that antivirus is a band-aid, and a fundamentally flawed idea... There really is no reason to be running it, especially on a mac.
Re: (Score:2)
WIndows may be the most accessible, but I doubt that it's the least protected. Surely a higher percentage of Windows users have antivirus running than users of other operating systems?
Re: (Score:2)
Re:There are differences between Windows/*nix (Score:4, Insightful)
[...] the damage is largely contained to the data in the user's directory.
True, but the user data _is_ the very thing you want to protect.
Feel free to mess up anything you find below C:\Windows, I'll at most be annoyed, everything in there can be replaced. However, the day you start leaking my personal data...
Re:There are differences between Windows/*nix (Score:5, Insightful)
Re: (Score:3, Informative)
You cannot expect this from a big box retailer. I've seen Macs at Fry's and CompUSA that were trashed. Not virus-ridden - but with deleted apps, desktop vandalism, and other local user asshattery.
Re: (Score:3, Interesting)
This is exactly how many bars, nightclubs, and restaurants operate. They have a list of "undesirables" (usually with pictures) who have caused problems in the past who aren't allowed in. Bouncers and maître d's are supposed to know the faces on the list.
It's not perfect, but blocking
Re: (Score:3, Interesting)
Actually, I do want that solution, and I've advocated it before. What is important, though, is that you can choose your own trust providers (so that the control is not all in a single entity's hands).
Interestingly, this is pretty much what things like apt-get give you. Provided you only install software through apt-get, you get to choose your trust providers (by adding repositories to sources.list), and you can then only
Simpler Method than AV (Score:3, Funny)
Let's see how that might play out:
Re: (Score:3, Interesting)
So one of the doctors brings his Windows notebook in and plugs it into the hospital network. It's infected by a worm, which quickly infects all the Windows machines in the hospital, no user interaction required. Instant nightmare. The virus