I ran across an article stating the United States Army believes that using Apple X Serve servers in Army data centers are proving their worth. How? Because most attacks are designed for Windows and not for Mac.

The first two comments on that article pretty much say it all:

Comment 1:

…I suspect that in many ways the Apple Macs are no more secure than many many other OS’s. It is only that they have not yet been put under the hackers spot light.

It’s "Security by Obscurity"

Comment 2:

…i don’t think this is security by obscurity, rather security by diversification. A monoculture is always easier to attack than a mixed environment.

Rarely do I see two comments right next to each other that point out the yin and the yang so precisely.

Both are absolutely correct even though they’re on completely opposite sides of the fence.

Comment 1 points out one of the large reasons OS X servers aren’t attacked more is because they’re simply not a large target (presently).

Comment 2 points out that multiple types of servers in the same environment is far better than an "all-or-nothing" approach; it makes it more difficult for hackers to intrude.

I agree with comment 2. I have worked in environments that mix four different server OSes (Windows, Unix, Linux, X Serve) and with properly trained staff it can all come together if one "stays the course", as they say. It is more secure to use a mixed server OS environment.

But the key thing to note is properly trained staff. You can’t just plop an X Serve into an environment and expect it to be 100% secure out-of-the-box. Someone (or a team) who is trained to configure and maintain X Serve boxes will make the difference whether they’re truly secure or not.

If the US Army is utilizing personnel who have been properly trained to administer X Serve boxes, we’re in good shape.

Let’s hope the Army isn’t subscribing to the "security by obscurity" mantra.