Is Apple Security By Obscurity?

by on Jan 8, 2008 | 2 comments

I ran across an article stating the United States Army believes that using Apple X Serve servers in Army data centers are proving their worth. How? Because most attacks are designed for Windows and not for Mac.

The first two comments on that article pretty much say it all:

Comment 1:

…I suspect that in many ways the Apple Macs are no more secure than many many other OS’s. It is only that they have not yet been put under the hackers spot light.

It’s "Security by Obscurity"

Comment 2:

…i don’t think this is security by obscurity, rather security by diversification. A monoculture is always easier to attack than a mixed environment.

Rarely do I see two comments right next to each other that point out the yin and the yang so precisely.

Both are absolutely correct even though they’re on completely opposite sides of the fence.

Comment 1 points out one of the large reasons OS X servers aren’t attacked more is because they’re simply not a large target (presently).

Comment 2 points out that multiple types of servers in the same environment is far better than an "all-or-nothing" approach; it makes it more difficult for hackers to intrude.

I agree with comment 2. I have worked in environments that mix four different server OSes (Windows, Unix, Linux, X Serve) and with properly trained staff it can all come together if one "stays the course", as they say. It is more secure to use a mixed server OS environment.

But the key thing to note is properly trained staff. You can’t just plop an X Serve into an environment and expect it to be 100% secure out-of-the-box. Someone (or a team) who is trained to configure and maintain X Serve boxes will make the difference whether they’re truly secure or not.

If the US Army is utilizing personnel who have been properly trained to administer X Serve boxes, we’re in good shape.

Let’s hope the Army isn’t subscribing to the "security by obscurity" mantra.

Free eBook!

Like what you read?

If so, please join over 28,000 people who receive our exclusive weekly newsletter and computer tips, and get FREE COPIES of 5 eBooks we created, as our gift to you for subscribing. Just enter your name and email below:

Post A Comment Using Facebook

  • Huh?

    What the hell are you trying to say? That you believe OS X is no more secure than other OS’es? It’s a sad commentary on security when I try to open a web page that contains Active-X, and Windows warns me that it could hose my computer, even though Active-X is their own proprietary code. On the other hand, OS X doesn’t allow that kind of crap. That, of course, is just one very simple example.

  • http://www.frostedside.com/blog/ Rich Menga

    Did you not read any part of the article that said “server”?

    Seriously, count how many times the article says “server”. Then count how many times it says “desktop”.

    What am I saying? I’m saying that I ought to drop a 40-lb. Unix manual on your head – several times – until some sense is knocked into you.

    That, of course, is just one very simple example.

What’s Your Preference?

Daily Alerts

Each day we send out a quick email to thousands of PCMECH readers to notify them of new posts. This email is just a short, plain email with titles and links to our latest posts. You can unsubscribe from this service at any time.

You can subscribe to it by leaving your email address in the following field and confirming your subscription when you get an email asking you to do so.

Enter your email address for
Daily Updates:

Weekly Newsletter

Running for over 6 years, the PCMECH weekly newsletter helps you keep tabs on the world of tech. Each issue includes news bits, an article, an exclusive rant as well as a download of the week. This newsletter is subscribed to by over 28,000 readers (many who also subscribe to the other option) - come join the community!

To subscribe to this weekly newsletter simply add your email address to the following field and then follow the confirmation prompts. You will be able to unsubscribe at any time.

Enter your email address for
Free Weekly Newsletter: