Leythos wrote:
> In article <ZuWdnbJ2_MPSbC3YnZ2dnUVZ_v2nnZ2d@bresnan.com>,
> shplink@removeme.shplink.com says...
>
>>Leythos wrote:
>>
>>>In article <XeGdnYzQH5e4Vy3YnZ2dnUVZ_veinZ2d@bresnan.com>,
>>>shplink@removeme.shplink.com says...
>>>
>>>
>>>>Every OS has its ups and downs. OS X has only had proof-of-concept
>>>>vulnerabilities. Potential holes are plugged in fast. And OS X has been
>>>>out for ... how long?
>>>
>>>
>>>Actually, take a look at the "Exploit" list for the OS/X based systems,
>>>there are quite a few installed applications that have exploit paths,
>>>and quite a few patches for those.
>>>
>>>The same with HPUX, while the OS itself may not be a serious risk, the
>>>applications and services/servers on the OS have had a number of
>>>exploits that allow the machine to be compromised.
>>>
>>
>>Thanks Leythos, you make an interesting and good distinction between the
>>OS and applications that may run on it. But; "real world," to-date: How
>>many documented infections by spyware or viruses have there been to OS X
>>users?
>
>
> I don't know the numbers, but there are a lot of Apache servers that are
> compromised on the net.
>
>
>>Laterally and more OS-specific, Ron suggested below that OSX users that
>>he knows tend to not stay up-to-date. I can't speak for his
>>acquaintances, but I stay updated religiously, and indeed: I notice
>>"security updates." No OS X is bulletproof, and they all will reveal
>>vulnerabilities eventually. But get patched and stay smart; once again
>>echoing Ron's thoughts, your first defense is yourself.
>
>
> I know a log of MAC users that have not done any patches for years,
> because the last time they did a patch or update it cause too many
> problems for them.
>
>
>>A win user, a mac user, and a Linux user walk into a bar... This hurts
>>each of them equally. Er- I mean, yeah. Anyway. You get my point. If all
>>three are updated and current, the real-world vulnerabilities for Linux
>>and OS X are simply not there.
>
>
> Exploits are different than viruses - and applications/services running
> on those platforms are exploited all the time.
>
> I've been using computers/servers since the 70's and never had any of my
> computers compromised by virus or exploit, and that includes all of the
> Windows computers/servers I own and use.
>
>
All good points, and no arguments here. Just suprised to hear of alleged
problems after updates... Never had a problem, including the OSX
versions (Started with Jaguar, went to Panther, now Tiger on the same
machine, my good ol' G4 iBook.)
I also have two minis at the house (one intel), my kid has a brand new
macbook pro, and have two close friends with OS X machines. No problems
in any of the above.

Also thanks for the clarification on exploits- naturally not the same
thing as viruses (or spyware in the general definition);
Question:
in terms of a typical home user, what sort of exploits can occur?
It seems to me that you are talking about high-volume, professional
systems and servers (whose caretakers should be super-extra vigilant
regardless of OS, anyway.)

--
the alt.privacy.spyware FAQ:
http://shplink.com/misc/FAQ.htm