![[Creative
Commons License - You may reuse my original content from this site non-commercially, with attribution.]](https://www.penmachine.com/images/somerights.gif){kind=small}
![[RSS syndication feed]](https://www.penmachine.com/images/rssfull.gif){kind=small}
![[RSS comments feed]](https://www.penmachine.com/images/rss_comments.gif){kind=small}
![[Penmachine Podcast]](https://www.penmachine.com/images/rsspodcast.gif){kind=small}
![[Powered by Blogger]](https://www.penmachine.com/images/blogger_button.gif "Blogger powered"){kind=small}
![[Powered by BlogRolling]](https://www.penmachine.com/images/blogrolling_button.gif "Blogrolling makes the link list"){kind=small}
![[Layout with CSS and no tables]](https://www.penmachine.com/images/css_tableless.gif){kind=small}
![[Viewable with any browser]](https://www.penmachine.com/images/allbrowsers_button.gif){kind=small}
![[Meets U.S. Section 508a accessibility guidelines]](https://www.penmachine.com/images/sec508a.gif){kind=small}
![[Weblog Commenting by HaloScan.com]](https://www.penmachine.com/images/haloscan.gif){kind=small}
How vulnerable is your Mac?
Permalinks to this entry: individual page or in monthly context. For more material from my journal, visit my home page or the archive.
There have been reports of a malicious Mac OS X trojan program out there. Really, there's not much to worry about if you're careful. Here's the basic thing:
Finally, and perhaps most importantly, never provide your administrator password to an untrusted application or install routine. Make sure, when downloading applications from any source, that the author is reputable and (if possible) other users have already tested the release. Unwittingly giving arbitrary code the permission to run is perhaps the greatest current security threat for Mac OS X users.
Just remember that, and watch for things that ask for passwords. Of course, Jakob Nielsen has a good point today:
User education puts the burden on the wrong shoulders. It's like the old Wild West, where the answer to crime was that every man carried a gun. In civilized society, we've abandoned this approach in favor of a professional police force to deal with criminals. When there is a mismatch between technology and people, the answer should not be to change the humans. The answer should be to change the computers. Computers and the Internet were both developed under the assumptions that everyone was trustworthy and there would never be any crime. That's obviously no longer true, and we need to rearchitect the technology accordingly. Even the Old West eventually transitioned to laws, courts, police, and jails.
