Mac vs. PC Security In One Sentence

By Daniel Miessler on March 20th, 2010: Tagged as Information Security | OS X

macvspcsecurity

If you follow Information Security at all or have been part of a PC vs. Mac discussion at any level, you’ve probably come across the timeless question of:

What’s more secure, Mac or PC?

Well, there’s an analogy from renowned security researcher Charlie Miller that elegantly captures the answer in a single sentence:

Mac OS X is like living in a farmhouse in the country with no locks, and Windows is living in a house with bars on the windows in the bad part of town.

In other words, less security with less exposure (OS X) vs. more security with more exposure (Windows).

In short, having a secure operating system and being safe are two different things. Exposure matters. So even though Windows is technically more resistant to attack, people using it are still less safe than if they were to use OS X. ::

  • Pingback: uberVU - social comments

  • http://maxolasersquad.com/ Maxolasersquad

    Daniel, do you really believe that, given equal exposure, OSX would be more susceptible to infection than Window?
    I don't really use Macs, but I think Ubuntu's gksudo screen VS Window's UAC is a shining example of how Microsoft is getting security all wrong.
    To me there are two big issues in desktop security. First, how easy is it for a remote application to run arbitrary code as an administrator without user intervention. The second, how easy is it to get the default user setup on the machine to execute code as administrator.
    On the first point, I have no idea, and I think at best one could only come up with theoretical data as it is impossible to know how many holes are in a large code base. One can only know how many have been discovered.
    On the second, in Windows it's dead easy. A “yes/no” dialogue comes up that does absolutely nothing to guarantee the person on the other end should be allowed to execute the command. In Ubuntu there are no administrators, so doing things like sharing logins is less of an issue because to perform and administrative task one must know the admin password setup at install time. This means if I step away from my computer for a bit and let someone else use it, short if intentionally malicious behavior on their end, I don't have to worry much about what sites they visit, or crappy programs they try to download.

  • http://maxolasersquad.com/ Maxolasersquad

    Daniel, do you really believe that, given equal exposure, OSX would be more susceptible to infection than Window?
    I don't really use Macs, but I think Ubuntu's gksudo screen VS Window's UAC is a shining example of how Microsoft is getting security all wrong.
    To me there are two big issues in desktop security. First, how easy is it for a remote application to run arbitrary code as an administrator without user intervention. The second, how easy is it to get the default user setup on the machine to execute code as administrator.
    On the first point, I have no idea, and I think at best one could only come up with theoretical data as it is impossible to know how many holes are in a large code base. One can only know how many have been discovered.
    On the second, in Windows it's dead easy. A “yes/no” dialogue comes up that does absolutely nothing to guarantee the person on the other end should be allowed to execute the command. In Ubuntu there are no administrators, so doing things like sharing logins is less of an issue because to perform and administrative task one must know the admin password setup at install time. This means if I step away from my computer for a bit and let someone else use it, short if intentionally malicious behavior on their end, I don't have to worry much about what sites they visit, or crappy programs they try to download.

  • http://www.laptopreviews2u.com Sun911

    Thank for sharing.

  • Cfwschmidt

    I half agree with your analogy. OS X may be like an unlocked farmhouse, but Windows is like a house in the rough part of town with bars on the windows and locks on the doors, but the bars aren’t bolted on for half of the windows and every door has one of those plastic-flap “pet doors” large enough for the family St Bernard. I think it’s inaccurate to portray Windows’ widespread and persistent security problems as being primarily a result of their enormous home OS marketshare. (I imagine Linux would probably be equivalent to a farmhouse with a fancy electronic home-security system that comes with a 400 page manual)

  • http://www.snkrepairs.com Computer Repair Santa Clarita

    I would think they are just about on par with each other. The only thing is that how many backdoor trojans have you seen on Macs? I’m sure the numbers will start rising because of the Intel processors and the fact that more and more people are using Macs.

  • http://security-wire.com/10/how-to-remove-thinkpoint-rogue-anti-spyware.html remove ThinkPoint virus

    Mac is more secure:)

  • http://pc-security-hq.blogspot.com/ PC Security HQ

    If you know what you are doing Linux is like living in Fort Knox.

  • etc

    That farmhouse is getting a lot of new neighbors lately…. http://securitywatch.eweek.com/apple/more_malware_attacks_seeking_macs.html

  • http://www.hacerunapagina.com.ar/ José – Hacer una Pagina

    Linux is a thousand times more stable than mac. The web servers are linux, no mac. Mac is a linux with enhanced graphical user interface and customized hardware. And a machine to make millions. The world’s best operating system for free, that’s your only problem. We open their eyes.

    Greetings.

    José.

  • Anonymous

    It is very Interesting & useful Information. Wireless security provides new dimensions to the security work. Though implementation of high end security algorithms & systems for the wireless medical devices is a subject of debate, one cannot ignore the potential risks involved in keeping such wireless communication unsecured! http://www.youralarmstore.com/

  • http://www.genericviagrarx.net/ Generic Viagra

    I personally think that Windows is more advanced and secure. It has a lot of protection contrary to what people think about it. Mac is still very vulnerable in my eyes. Lots of Loopholes still to be fixed.

  • http://www.squidoo.com/logitech-z-5500-review Jack

    There is also the belief that Apple’s polished reputation has little to do with its hardware, but is all because of excellent marketing. It may be that the legend of the Mac’s superior security is more about marketing genius and less about actual facts.

  • http://www.realpharmacyrx.net/ generic viagra

    In the recent generation, windows and Linux are the most preferred software by people worldwide. Mac still requires lot of publicity and also need to implement something that makes it different and out of the box.

  • mac

    Yes we can say that everyone wants security. It must keep safe all the information. Mac must be secured at this time. Generic Viagra online


Top

Popular

Information Security / Technology

Politics

Philosophy & Religion

Technology & Science

Culture & Society

Miscellaneous

Arguments

Projects

Collections

Twitter

What I'm Reading

Favorite Books and Essays

Top Blog Categories

Inputs