So my employer is no big secret, and I will be happy to defend it when it is warranted. I will also acknowledge when they make a misstep. I happen to the security expert for my orgnization now, so I have some pretty good insight into what the security practices are there. I happen to know they lead the industry.
Which is why the mac ads where some cockpuppet indy looking dork talks about how The Steve personally used his divinity to wipe out any security problems on the Mac to be so fuck off annoying, since their security practices suck. Want Proof?
Some great lines from the article
Although Thursday's update pushed Apple's year-to-date patch total to over 100, there was a bright side: It included fixes for fewer flaws than last month (25) and the month before (45).
Apple on Thursday unveiled the year's fifth major security update for Mac OS X to patch 17 vulnerabilities, but fewer than one-third of them could lead to hackers injecting their own code into a compromised system.
So only 5 vulnerabilities this month can lead to a full system compromise.... this month. I mean, at least Apple is getting better (or just opting not to fix as many bugs), but customers would have a conniption if Vista had 100 security vulnerabilities patched in 5 months. In the past 5 months for the Mac there have been 43 vulnerabilities that will allow the arbitrary execution of code on a system, and a further ten that allow privledged code ellivation. What that tells me is that if people wanted to, they could VERY easily write viruses to completely own the mac. I'm willing to bet a lot of people believe the hype about Apple and aren't great about keeping their system up to date.
Now let's look at Vista. Since Vista was released there have been THREE critical vulnerabilites, total. Not for the month of May, but ever. For the month of May, here are the security vulnerabilities
• MS07-023 - addresses a vulnerability in Microsoft Office (KB934233)
• MS07-024 - addresses a vulnerability in Microsoft Office (KB934232)
• MS07-025 - addresses a vulnerability in Microsoft Office (KB934873)
• MS07-027 - addresses a vulnerability in Microsoft Windows (KB931768)
• MS07-028 - addresses a vulnerability in CAPICOM (KB931906)
Incidentally, the three office vulnerabilites are not present if the user is running office 2007, which is reasonably likely if they are running vista (and at least as much an upgrade over office 2003 as vista is over xp). Almost no consumer class user will need the patch for Capicom. So as a Vista user running Office 2007, I had exactly one patch to download this month. As opposed to 17.
Yep, OS X really is the more secure OS. Fucking wankers.