Linked by Thom Holwerda on Tue 1st Mar 2011 00:28 UTC
Mac OS X It's sad to see that even after all these years, we still have to write articles like this one. It's all over the web right now: a new backdoor Mac OS X trojan discovered! Code execution! Indicative of rise in Mac malware! Until, of course, you actually take a look at what's going on, and see that not only is it not in the wild, it can't really do anything because it's a beta.
Permalink for comment 464545
To read all comments associated with this story, please click here.
RE[3]: Maybe I'm crazy...
by Alfman on Wed 2nd Mar 2011 16:57 UTC in reply to "RE[2]: Maybe I'm crazy..."
Member since:


"How about not giving average applications access to so much user data (which they really don't need) as a default setting, but giving the user the option to choose to do so for software which requires it, with an UAC/gksudo-like window ?"

This is exactly what we *needed* for security, but the walled garden is what mobile users are *getting* instead.

The local application sandbox is not only valid in theory, but we already have several viable implementations. The benefits to end users is exactly the reason they're losing traction in the mobile sector - they permit the secure execution of arbitrary applications without relegating control to a single vendor.

Most apps we might want to run from the internet don't need (and should not have access to) other apps or local files. The sandbox model addresses all technical security concerns, yet mobile manufacturers are opting for a walled garden instead in the interests of market control.

Reply Parent Score: 1