I have mixed feelings. I figure AV is at best 30% effective, and I know I can keep my Mac pretty secure without it. Still, I run Sophos on my Mac and it doesn't get in the way. If it did, I would have no issue in shutting it down. AV is like seatbelts on an airplane. They provide a little security during bumpy flights, but a lap belt isn't going to do much when the plane is rocking and rolling ( or crashing).
Chris Croad -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Josh More Sent: Thursday, August 23, 2012 11:23 PM To: PaulDotCom Security Weekly Mailing List Subject: Re: [Pauldotcom] AV for OSX I agree with Ryan's view. Also, as a counterpoint to Michael's, it is surprisingly difficult to not do anything stupid under OSX. The only way I've found to be reasonably secure is to not run as admin (not hard, actually), use Little Snitch and Glimmer Proxy (annoying) AND replace Safari completely with a hardened Firefox (noscript, HTTPS Everywhere, Request Policy, WOT, Adblock+, Certificate Patrol, etc)... which pretty much completely kills a large part of the OSX experience. When you add to this, the tendency of Apple to release patches as frequently as cicadas, I don't think that adding an additional layer of defense, imperfect as it is, is a bad idea. I use Sophos on mine. -Josh More On Thu, Aug 23, 2012 at 4:43 PM, Michael D. Wood <[email protected]> wrote: > I also agree. Don't believe the hype, when/if it really comes down to it - > maybe, then look into something. In the meantime, be security aware and > don't do anything stupid. > > -- > Michael D. Wood > ITSecurityPros.org > www.itsecuritypros.org > > -----Original Message----- > From: [email protected] > [mailto:[email protected]] On Behalf Of Alex Kornilov > Sent: Thursday, August 23, 2012 10:55 AM > To: [email protected] > Subject: Re: [Pauldotcom] AV for OSX > > On 8/22/12 10:20 PM, John Strand wrote: >> No. >> >> The reason? I have yet to be on a test were it gets in the way. >> >> I do know it causes your system to run slower and crash more. >> >> I would rather have a faster, less secure system than the illusion of >> security. > +1 > I agree. Don't believe propaganda from yellow press IT blogs. > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
