•
Yes they are.
No they are not.
And I just know what the comments on this article are going to be like...
•
First, a disclaimer: I do not own a Macintosh. I've come very close a time or two for various reasons, but have yet to do so. What follows is my opinion based on my understanding of the technologies involved, the state of the industry, and some assumptions about how hackers think. Yes, that last point is perhaps the most important part of this discussion.
I answered by saying that a Macintosh is very safe (presumably in comparison to Windows based computers) and that it is also not any safer. Let's look at why I say both.
Position #1: The Macintosh is no safer than Windows.
All software has bugs. Period. There is no such thing as perfect software. Systems are too complex for all possible outcomes and situations to be predicted and handled properly. Developers are human, and development teams are similarly complex systems that can only produce imperfect results.
Why do I go out of my way to say that? Because "all software" includes Macintosh software, and security exploits are simply the result of a class of programming or design error or "bug".
I firmly believe that the Macintosh operating system and Mac applications contain their share of vulnerabilities. More than Windows? Fewer than Windows? I don't know, but it doesn't really matter, because they are there.
So why don't we hear about Mac exploits like we do about Windows? That's because:
Position #2: The Macintosh is much safer than Windows.
I recently read that Macintosh has 4% market share. Over generalizing, that means 1 out of every 25 personal computers is a Mac.
And that's the reason you don't hear about massive vulnerabilities or spyware or any of that other stuff we've come to associate with Windows. Not because it couldn't be done, but because no one's bothered to do it.
It's not worth it.
This is where we start trying to think like a hacker. If you wanted to cause trouble, would you write something that upset 1 out of every 25 computers? Or would you target the other 24? If you wanted to install spyware, would you write it such that it worked on 4% of computers or 96%?
If you hated Microsoft, would you write a virus for the Mac?
The answer for all of that should be fairly obvious. Apple and the Macintosh simply aren't as big a target as Microsoft and Windows. As a result, you are inherently safer on a Mac, because almost no one is actively trying to cause you trouble.
But, don't get too comfortable yet, because:
Position #1, revisited: The Macintosh is no safer than Windows.
Some things are platform independent. You asked specifically about sniffing, which I take to mean monitoring your internet traffic. The answer there is that the Macintosh suffers from all the same vulnerabilities that Windows or any other computer on the internet does. Internet traffic can be monitored, plain text email can be captured, email and websites can still fool you into doing things you shouldn't.
So please, don't think you're totally safe because you're on a Mac. Safer, yes, but immune? Not at all.
So if the Mac is safer, albeit only because it's not as big a target, why is Windows so popular? That's a complex questions that'll generate about as many opinions as anything else. My thoughts: You can get Windows on a wide variety of computers from a wide variety of manufacturers ... you can only get Apple's operating system for Apple's hardware. There's more software available for Windows. Macs tend to be more expensive. Many corporations and schools have standardized on Windows.
That's not to say that Apples aren't worthwhile computers ... in a nutshell, they rock, and I know it. Apple's known for a superior and consistant user interface, as well as a fairly seamless hardware experience. But Windows wins market share on cost and flexibilty.
And given that more market share makes you a bigger target ... maybe Apple's happy to let someone else take the bullets.
Update:As I expected the Mac crowd has weighed in loudly. Perhaps the best "counter-argument" I've seen so far to my article is here: MacDailyNews: Apple Macs are inherently safer and more secure than Microsoft Windows. I put "counter-argument" in quotes, only because we arrive at the same conclusion - Mac's are safer - we just get there through very different means.
I encourage you to read the many comments below. The furor is that I've come to the right conclusion - Mac's are safer - for the wrong reasons. In between the "Leo's an idiot" statements (which, of course, I hope you'll ignore), is good information, and many more reasons Mac users love their Mac's.
While there are many articles that discuss the points tackled here, a reader pointed me to this one - "Broken Windows" - I found it to be a well stated summary of much of what my commentors are saying.
.Related:
-
Ask Leo! - How can I keep my email safe from sniffing?
-
Ask Leo! - Recommendation: "Connect Safely - Wireless Security and Privacy Guide"
-
Ask Dave Taylor - SSH Tunnels? How do I use an ssh tunnel to secure my email? - Dave shows how to set up an SSH tunnel with Microsoft Entourage on the Mac.
Article C2466 - November 21, 2005
You sir, are an idiot. You have not researched anything. You haven't even tried a Mac in a real world enviroment. Why not have some FACTS before writing this purely opinion column? Ask-Leo.Com lost whatever credibility it had.
Next time, do a comparison. Get a Mac, with the latest version of OS X on it. With all the updates. Get a Windows XP machine, with the latest service packs. Use both for a week, and see which has a virus or problems.
Posted by: eric at November 22, 2005 5:30 PMIn order to understand the underlying differences between Mac OS X (Unix) security and Windows security you need only read this article:
http://macdailynews.com/index.php?URL=http://www.icefox.net/articles/why_microsoft_market_share_wont_grow.php
OS X is not secure through obscurity. Any Unix virus or malware would work against a Mac, and the Unix (all flavors combined) market share rivals that of Windows. Unix is simply designed for security with multiple users where Windows never has been and so far, will not be in the future with Vista. The difference is the presence of a registry. Windows is a house with no interior doors locked and some windows left open. Mac OS X is a house with all the doors and windows locked, even the interior ones. Break into the Mac house and you find yourself in a locked broom closet. Crawl into the Windows house through one of the open windows and you have the run of the place.
Posted by: Zeke at November 22, 2005 5:37 PMOK, time to put this to an end. I'm closing comments on this thread.
Folks are now basically just repeating the same sentiments over and
over.
As I read them the comments are best summarized as:
- Leo's an idiot
- Market share has nothing to do with it.
- Leo has no idea what he's talking about.
- OS/X is based on Unix, and therefore inherrently better than Windows.
It's simply a more secure operating system, period.
- Leo's an idiot.
- Windows sucks.
- "Macs" is not possessive. It is plural.
I *do* want to thank the folks who posted rational, informative counter
arguments. They're an important, and educational, perspective.
I definitely did expect there to be discussion on this topic. I will
Posted by: Leo A. Notenboom at November 22, 2005 6:36 PMsay, however, that I'm disappointed that it got as personal and as
emotional as it did.
Gee, I do not remember seeing anywhere that Leo stated any certain Mac OS. If you do follow the news you will find that the hackers have penetrated the Mac Os many times and did it within 10 minutes. Now does that mean that a Mac is safe? NO, Does that mean that they may be safer than a PC? Yes But everyone needs to make sure that their computers are safe. Even companies that use Unix use firewalls and scan for viruses and such. If you wish to run your computer with your head down a hole in the ground then be ready to accept what happens. I have had to clean many Macs for a Mac dealer that they took in on trade for newer machines. So saying that one is free from viruses or intrusion is false. Wake up everybody and do what is needed to protect your computers. This means everyone.
Posted by: Steve Keller at November 3, 2009 6:41 PMThank you
I own 2 macs, and have used many PCs in my life. Ive never had a virus on either Mac or Windows. I know for a fact that they both are susceptible to viruses, and that there never will be a computer immune. I would have to say that the Macintosh community as a whole is less at risk for viruses because Mac users seem to love their computers to the point they dont want to break them, Mac is built on unix which is historically more secure, and the Mac requires you enable anything you download to execute before it runs. Windows just seems so much more vulnerable, all a virus needs to do is attack a few select folders, which any user can access, to wreak havoc.
To counter all those that say that linux is the safest, its only because the people who write linux and run it are, for the most part, computer programmers and would love nothing more than to just have their own little operating system for free. Also why would linux users write viruses for each other?
And to anyone who says Mac cant get a virus, my antivirus has over 500 000 virus definitions in its database. Im not sure about how many there actually are.
Great article Leo, very thought provoking on the issue, but perhaps next time a little more research?
Posted by: Henry at November 9, 2009 6:16 PM