tag:blogger.com,1999:blog-6477215397403017256.post3057930562383387749..comments2023-11-08T03:33:06.125-08:00Comments on the JoshMeister on Security: Breaking News: Mac OS X Snow Leopard Built-in Antivirus?Josh Longhttp://www.blogger.com/profile/03511083686180216122noreply@blogger.comBlogger9125tag:blogger.com,1999:blog-6477215397403017256.post-12113799221758750602009-08-26T02:28:36.456-07:002009-08-26T02:28:36.456-07:00Why is an open button such a surprise? You can by...Why is an open button such a surprise? You can bypass quarantine in most virus programs already. There is a warning, and this appears to be mostly unintrusive, seems ok to me. Open isn't the default option, either.XenoPhagehttps://www.blogger.com/profile/13048433880769292967noreply@blogger.comtag:blogger.com,1999:blog-6477215397403017256.post-36072499295815398692009-08-25T23:24:20.002-07:002009-08-25T23:24:20.002-07:00Just to clarify, I think that the Open button has ...Just to clarify, I think that the Open button <i>has</i> to be an option. I could definitely see a confirmation popup in the even that one chose to open an "infected" file. But, file scanners aren't perfectly accurate, and sometimes perfectly neutral IT tools make it into the lists as Trojans despite mainstream acceptance. But you guys have a point. We are talking about the company that despite its obvious genius at times still prefers the 1-button mouse!afro-canhttps://www.blogger.com/profile/16869969123211440751noreply@blogger.comtag:blogger.com,1999:blog-6477215397403017256.post-81852248065057524392009-08-25T19:30:47.783-07:002009-08-25T19:30:47.783-07:00Could they have just written a filter into the Spo...Could they have just written a filter into the Spotlight indexer that looks for signatures in files as they're indexed, and then a little policy to silently 'index' all new files and mounted images without necessarily making an actual index? Seems like Apple already has a great technology to unobtrusively search for 'patterns' in files with Spotlight; leveraging it for antivirus would be no big thing. Also, if this is true, definition updates would just be part of point releases and updates, which seems all that's needed given the slow proliferation of Mac malware.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-6477215397403017256.post-58187505549243240182009-08-25T18:47:42.489-07:002009-08-25T18:47:42.489-07:00Yea, right, an Open button? No way José!Yea, right, an Open button? No way José!Ron Bannonhttps://www.blogger.com/profile/05635340256792837608noreply@blogger.comtag:blogger.com,1999:blog-6477215397403017256.post-68380629818870071042009-08-25T15:36:12.806-07:002009-08-25T15:36:12.806-07:00How about ClamAV which is also used on OSX server ...How about ClamAV which is also used on OSX server 10.5?The Sad Guyhttps://www.blogger.com/profile/09375515406466342183noreply@blogger.comtag:blogger.com,1999:blog-6477215397403017256.post-65199296672670903032009-08-25T14:26:45.408-07:002009-08-25T14:26:45.408-07:00Could Apple have updated ClamAV used in v10.6 to h...Could Apple have updated ClamAV used in v10.6 to have the definition for OSX.RSPlug.A?Frushhttps://www.blogger.com/profile/17643360650459570298noreply@blogger.comtag:blogger.com,1999:blog-6477215397403017256.post-10407758503641421492009-08-25T14:10:11.795-07:002009-08-25T14:10:11.795-07:00One other possibility - Apple is using ClamAV but ...One other possibility - Apple is using ClamAV but writing it's own signatures.Jeffhttps://www.blogger.com/profile/12628898666489070125noreply@blogger.comtag:blogger.com,1999:blog-6477215397403017256.post-8889968232410681182009-08-25T13:29:44.097-07:002009-08-25T13:29:44.097-07:00Seriously: do you really think they would include ...Seriously: do you really think they would include a "open" button in the eventuality it contained mailware ?<br /><br />This is a fake... And a very bad one ;)Unknownhttps://www.blogger.com/profile/13972372979562032485noreply@blogger.comtag:blogger.com,1999:blog-6477215397403017256.post-23767892235790218512009-08-25T13:05:57.739-07:002009-08-25T13:05:57.739-07:00Since I'm running the GM seed, I'd be inte...Since I'm running the GM seed, I'd be interested to know where this was downloaded from, for independent confirmation.Anonymousnoreply@blogger.com