Secure IT Foundation

Snow Leopard or Windows 7 – ‘secure out the box’?

Posted on: October 24, 2009

There hasn’t been a major operating system update for some time then two come along together. Both Apple Mac’s Snow Leopard and Microsoft’s Windows 7 are available, so both PC and Mac users have to decide if they upgrade.

We have covered the correct decision process you should use when deciding if you should buy a new computer to get Windows 7 previously. The verdict was if your current secure computer is working fine with XP or Vista, then there is little benefit for the home user apart from eye candy. If your computer is slow now then adding 7 will not change much, software is no substitute for having fast hardware. Mac’s have an advantage here in that the hardware is known by Apple, and they will know the benefits of software changes better than Microsoft whose user could have a near infinite combination of hardware.

From testing and research though, neither operating system could be called ‘secure out the box’. Macs have the advantage of using non admin users on a daily basis, a practice that Windows 7 does not yet enforce, but can do perfectly well. Malware is mostly a Windows problem but Macs have their own malware these days, and the inclusion of very basic malware detection in Snow Leopard shows that it will only get worse according to Apple.

Both have fully functioning firewalls, and the default services offered over a network are mostly a sensible choice for either OS. However it is not all good. Both do suffer from default browsers with known security issues. Years ago the problem with PCs was their accessibility over a network to viruses and worms, but this vulnerability has been mostly closed.

The risk comes these days from the moment the home computer user starts to use their computer! You open a web page loaded with malware and your brand new operating system can be compromised. Even if both Snow Leopard and Windows 7 are using non admin users, poor security practice by the user can allow malware to run. There is nothing any operating system can do if the user enters the administrative password and installs an application which contains malware. The new malware detection in Snow Leopard only stops a couple of known viruses, so the virus writers will modify them not to be detected. Then begins the Mac Anti Virus arms race as seen with Windows.

Overall both operating systems offer a default level of security. Macs do offer a higher level of security out the box, but it still is far from a truly secured compared to the Secure Computer Standard. Windows 7 has a much higher security level than Windows XP out the box, but again it still is far from a truly secured compared to the Secure Computer Standard. Both 7 and Snow Leopard offer better user experiences than previous versions, so Mac users will upgrade and 7 will be adopted through people updating their hardware over time. The Secure IT Foundation’s conclusion is that Windows 7 and Snow Leopard are both not secure out the box, and both offer little in the way of user education.

Wouldn’t it be nice if you had to watch a safety video before you used the new operating system. Works well to give all air passengers a minimum level of safety knowledge for flight, perhaps its time computers came with a safety manual. Until then you can always read the Home Computer Policy

SB

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


    • Coldwind: Couldn't agree more. I downloaded a piece of software just now, disabled the 'toolbar' 'offer' (which fortunately for me has become a reflex); but co
    • ModemJunki: I only discovered this today - I had updated the firmware to the latest out of habit, and I could STILL access my TrendNet cams on the local network w
    • PrentOS – a Simple Secure Computer « Secure IT Foundation: [...] September 2010 we said it was time for a brand new start to computing, well it is starting to take shape… [...]

    Categories

    %d bloggers like this: