Virus protection question

Hi
My Mom recently moved to Oregon and has to use Comcast as her internet/e-mail provider. Things were fine for several weeks but then her outgoing mail stopped working. A discussion with Comcast lead to them telling me that her computer was being used as a conduit for spam and that I needed to change the port for the outgoing e-mail. I did, and all is fine again. She uses Mail.
Except, I'm wondering if she has virus on her computer. I thought macs were fairly immune. Comcast suggested using "McAfee Antivirus & Firewall."
Should I download McAfee? Can I get the Antivirus part WITHOUT the Firewall part?
Thanks for any help.

NanciD:
I concur with ali in that there is currently no known virus for Mac OS X. Anti-virus programs even like ClamX run in the background and is one more process for the computer to manage. You may be interested in some of the discussion in this thread, particularly Charles Minow's post at the end.
I do not use an A-V utility and never have. If you are concerned about securiting your computer you may be helpful in some of the tips in Security: OS Hardening. You may also want to follow the links at the end.
Good luck
cornelius
Good luck
cornelius

Similar Messages

  • Virus Protection and Firewall Question

    I just switched from a PC to a Mac. Should I download virus protection and if so which one is best for a Mac? Also, I believe my computer came with the firewall turned off... should I turn that on?

    Should I download virus protection...
    No. The OS has built-in recognition of known Mac malware in files downloaded from the Internet. All commercial "anti-virus" products for the Mac are worse than useless. Do not install any of them.
    ...and if so which one is best for a Mac?
    Your mind. All Mac malware takes the form of trojans, which depend on the victim's ignorance to be installed. Don't be ignorant.
    Also, I believe my computer came with the firewall turned off... should I turn that on?
    Not unless you are on an untrusted network, such as a public hotspot, and have services enabled in the Sharing preference pane. Under any other circumstances, the firewall should be left off.

  • A question regarding Virus protection..

    Hey! So my mac is about 2 years old now. I was wondering is there any virus protection programs that I should download to keep my Mac safe?
    Also, are there any viruses that CAN attack a Mac?
    As far as I have been using the mac there have been absolutely no problems that I have encountered. No virus problems I mean.
    Do mac's come with any inbuilt or uploaded virus protection program or something?

    There are no confirmed viruses on Mac operating systems.  Occasionally someone says they have heard of one but those are isolated and not confirmed by the user community.  The Unix-based Mac OS X operating system has strong security and when setup properly is highly resistant to virus attacks.
    As shldr pointed out, a very good and FREE anti virus program is ClamXAV...if you feel you must have a virus protection program.
    DO NOT fall for the misleading pup-ups regarding MacKeeper...that program keeps popping up (did on my iMac recently) saying your computer is infected with x-number of viruses...buy their software to protect your system.  That is not true because there is no way they could know if you even did have a virus on your system.
    So, bottom-line, you really don't need to worry about viruses, and do not fall for hype you might hear.  If you do hear about a virus, come on these communities and ask...there are knowledgable people here who will have the facts.

  • Mozilla Firefox is my internet browser, I would like to download my McAfee Anti-Virus protection DVD.

    I have a new Window 7 Premium Home Edition,Model: Inspiron 560. It came with a 30 day free trail of McAfee Anti-Virus Protection, which expires in less than three days. Roughly, two weeks ago, I received in the mail from QVC, a DVD, named PC Treasures, Inc.-Total PC Software Suite, which has my four year McAfee Anti-Virus Protection program on it.
    I was told by one of those so-called Dell experts techs, to install that DVD, into the tray of your modern, a small box would appear in the left-hand bottom of your screen, and type in "RUN". Nothing happened!!! Now,the PC that I had for 15 years, did this, but with this new one, not the same.What do I do, in installing or down loading this DVD? I could use a step by step instructions.

    This does not sound to be a Firefox problem.
    An obvious question is does your machine play DVDs ?
    You will probably need to be in an admin account.
    You should be able to use your Firefox browser to find assistance.
    * try http://home.mcafee.com/root/support.aspx <-- clickable link --
    ( If the DVD is provided by and bought from Dell you may need to contact them that is apparently http://support.dell.com/ )

  • My computer keeps freezing on me every 15 min do i have a virus I was told when you have mozilla firefox you don't need virus protection is that true and how can I scan if I have a virus and now do i get rid of it?

    # Question
    My computer keeps freezing on me every 15 min do i have a virus I was told when you have mozilla firefox you don't need virus protection is that true and how can I scan if I have a virus and now do i get rid of it? edit

    Start Firefox in [[Safe Mode]] to check if one of the add-ons is causing the problem (switch to the DEFAULT theme: Tools > Add-ons > Themes).
    * Don't make any changes on the Safe mode start window.
    See:
    * [[Troubleshooting extensions and themes]]
    * [[Troubleshooting plugins]]
    If it does work in Safe-mode then disable all extensions and then try to find which is causing it by enabling one at a time until the problem reappears.
    * Use "Disable all add-ons" on the [[Safe mode]] start window to disable all extensions.
    * Close and restart Firefox after each change via "File > Exit" (Mac: "Firefox > Quit"; Linux: "File > Quit")
    There are other things that need attention:
    Your above posted system details show outdated plugin(s) with known security and stability risks that you should update.
    # Shockwave Flash 10.0 r32
    # Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers
    Update the [[Managing the Flash plugin|Flash]] plugin to the latest version.
    *http://www.adobe.com/software/flash/about/
    Update the [[Java]] plugin to the latest version.
    *http://www.oracle.com/technetwork/java/javase/downloads/index.html (Java Platform: Download JRE)

  • With ransomeware becoming a threat, what is the best virus protection?

         With ransomeware becoming a threat, what is the best virus protection?  I am running OS-X Yosemite and want to protect against virus intrusion.  What are the best approaches, including what virus protection software?

    Ransomware and viruses are unrelated to one another, so your question is logically inconsistent. To learn about "ransomware" read "Ransomware" web pages.
    What are the best approaches, including what virus protection software?
    The best approach to Internet security does not rely upon any third party virus protection, for the reasons that follow.
    There will always be threats to your information security associated with using any Internet - connected communications tool:
    You can mitigate those threats by following commonsense practices
    Delegating that responsibility to software is an ineffective defense
    Assuming that any product will protect you from those threats is a hazardous attitude that is likely to result in neglecting point #1 above.
    OS X already includes everything it needs to protect itself from viruses and malware. Keep it that way with software updates from Apple.
    A much better question is "how should I protect my Mac":
    Never install any product that claims to "clean up", "speed up",  "optimize", "boost" or "accelerate" your Mac; to "wash" it, "tune" it, or to make it "shiny". Those claims are absurd.Such products are very aggressively marketed. They are all scams.
    Never install pirated or "cracked" software, software obtained from dubious websites, or other questionable sources.
    Illegally obtained software is almost certain to contain malware.
    "Questionable sources" include but are not limited to spontaneously appearing web pages or popups, download hosting sites such as C net dot com, Softonic dot com, Soft pedia dot com, Download dot com, Mac Update dot com, or any other site whose revenue is primarily derived from junk product advertisements.
    If you need to install software that isn't available from the Mac App Store, obtain it only from legitimate sources authorized by the software's developer.
    Don’t supply your password in response to a popup window requesting it, unless you know what it is and the reason your credentials are required.
    Don’t open email attachments from email addresses that you do not recognize, or click links contained in an email:
    Most of these are scams that direct you to fraudulent sites that attempt to convince you to disclose personal information.
    Such "phishing" attempts are the 21st century equivalent of a social exploit that has existed since the dawn of civilization. Don’t fall for it.
    Apple will never ask you to reveal personal information in an email. If you receive an unexpected email from Apple saying your account will be closed unless you take immediate action, just ignore it. If your iCloud, iTunes, or App Store account becomes disabled for valid reasons, you will know when you try to buy something or log in to this support site, and are unable to.
    Don’t install browser extensions unless you understand their purpose. Go to the Safari menu > Preferences > Extensions. If you see any extensions that you do not recognize or understand, simply click the Uninstall button and they will be gone.
    Don’t install Java unless you are certain that you need it:
    Java, a non-Apple product, is a potential vector for malware. If you are required to use Java, be mindful of that possibility.
    Java can be disabled in System Preferences.
    Despite its name JavaScript is unrelated to Java. No malware can infect your Mac through JavaScript. It’s OK to leave it enabled.
    The same precaution applies to Adobe Flash Player. Newly discovered Flash vulnerabilities appear almost weekly.
    Beware spontaneous popups: Safari menu > Preferences > Security > check "Block popup windows".
    Popup windows are useful and required for some websites, but unsolicited popups are commonly used to deceive people into installing unwanted software they would never intentionally install.
    Popups themselves cannot infect your Mac, but many contain resource-hungry code that will slow down Internet browsing.
    If you ever receive a popup window indicating that your Mac is infected with some ick or that you won some prize, it is 100% fraudulent. Ignore it.
    The same goes for a spontaneously appearing dialog insisting that you upgrade your video player right this instant. Such popups are frequently associated with sites that promise to deliver "free" movies or other copyrighted content that is not normally "free".
    The more insistent it is that you upgrade or install something, the more likely it is to be a scam. Close the window or tab and forget it.
    Ignore hyperventilating popular media outlets that thrive by promoting fear and discord with entertainment products arrogantly presented as "news". Learn what real threats actually exist and how to arm yourself against them:
    The most serious threat to your data security is phishing. Most of these attempts are pathetic and are easily recognized, but that hasn't stopped prominent public figures from recently succumbing to this age-old scam.
    OS X viruses do not exist, but intentionally malicious or poorly written code, created by either nefarious or inept individuals, is nothing new.
    Never install something without first knowing what it is, what it does, how it works, and how to get rid of it when you don’t want it any more.
    If you elect to use "anti-virus" software, familiarize yourself with its limitations and potential to cause adverse effects, and apply the principle immediately preceding this one.
    Most such utilities will only slow down and destabilize your Mac while they look for viruses that do not exist, conveying no benefit whatsoever - other than to make you "feel good" about security, when you should actually be exercising sound judgment, derived from accurate knowledge, based on verifiable facts.
    Do install updates from Apple as they become available. No one knows more about Macs and how to protect them than the company that builds them.
    Summary: Use common sense and caution when you use your Mac, just like you would in any social context. There is no product, utility, or magic talisman that can protect you from all the evils of mankind.

  • Virus protection software

    Hi. I probably should have asked this question months ago when I bought this computer, but after a discussion at work, realized that I should probably purchase and/or download some kind of virus protection. Any suggestions....for some reason, I thought something would come with my purchase of the iMac, but I think I was mistaken.
    Thanks in advance.

    Actually, it is not necessary to run anti-malware software on a Mac. I say malware instead of "virus" because there are no Mac OS X viruses. A "virus" is malicious software that installs and spreads without direct user action. All that Conficker stuff is harmless on Mac OS X.
    There are other types of malware, such as Trojans, that do exist for Mac OS X. This type works by tricking the user into being installed by pretending to be something else. The user must knowingly run the software and give authorization for it to be installed. Using common sense and not running software from an unknown or suspicious source is sufficient protection. Nothing can prevent you from running and installing software, if that was your intention.
    The one reason you may want to run anti-malware software on Mac OS X is if you exchange emails and files with people who use Windows. Any files and emails with malware may be harmless on your Mac, but it can cause problems to others if you forward it. There is a free program called ClamXav.
    http://www.clamxav.com/
    The best way to use such programs is to run it periodically to scan your Mac's hard drive. Basically, run it periodically and don't worry about malware the rest of the time.

  • Is virus protection necessary?

    Is Virus protection necessary?

    Yes. Fortunately OS X already includes everything it needs to protect itself from viruses and malware. Keep it that way with software updates from Apple. Ill-conceived third party "anti-virus" garbage products are the primary reason for Mac instability, crashes and related problems reported on this site.
    A much better question is "how should I protect my Mac":
    Never install any product that claims to "speed up", "clean up", "optimize", or "accelerate" your Mac. Without exception, they will do the opposite.
    Never install pirated or "cracked" software, software obtained from dubious websites, or other questionable sources. Illegally obtained software is almost certain to contain malware.
    Don’t supply your password in response to a popup window requesting it, unless you know what it is and the reason your credentials are required.
    Don’t open email attachments from email addresses that you do not recognize, or click links contained in an email:
    Most of these are scams that direct you to fraudulent sites that attempt to convince you to disclose personal information.
    Such "phishing" attempts are the 21st century equivalent of a social exploit that has existed since the dawn of civilization. Don’t fall for it.
    Apple will never ask you to reveal personal information in an email. If you receive an unexpected email from Apple saying your account will be closed unless you take immediate action, just ignore it. If your iTunes or App Store account becomes disabled for valid reasons, you will know when you try to buy something or log in to this support site, and are unable to.
    Don’t install browser extensions unless you understand their purpose. Go to the Safari menu > Preferences > Extensions. If you see any extensions that you do not recognize or understand, simply click the Uninstall button and they will be gone.
    Don’t install Java unless you are certain that you need it:
    Java, a non-Apple product, is a potential vector for malware. If you are required to use Java, be mindful of that possibility.
    Disable Java in Safari > Preferences > Security.
    Despite its name JavaScript is unrelated to Java. No malware can infect your Mac through JavaScript. It’s OK to leave it enabled.
    Block browser popups: Safari menu > Preferences > Security > and check "Block popup windows":
    Popup windows are useful and required for some websites, but popups have devolved to become a common means to deliver targeted advertising that you probably do not want.
    Popups themselves cannot infect your Mac, but many contain resource-hungry code that will slow down Internet browsing.
    If you ever see a popup indicating it detected registry errors, that your Mac is infected with some ick, or that you won some prize, it is 100% fraudulent. Ignore it.
    Ignore hyperventilating popular media outlets that thrive by promoting fear and discord with entertainment products arrogantly presented as "news". Learn what real threats actually exist and how to arm yourself against them:
    The most serious threat to your data security is phishing. To date, most of these attempts have been pathetic and are easily recognized, but that is likely to change in the future as criminals become more clever.
    OS X viruses do not exist, but intentionally malicious or poorly written code, created by either nefarious or inept individuals, is nothing new.
    Never install something without first knowing what it is, what it does, how it works, and how to get rid of it when you don’t want it any more.
    If you elect to use "anti-virus" software, familiarize yourself with its limitations and potential to cause adverse effects, and apply the principle immediately preceding this one.
    Most such utilities will only slow down and destabilize your Mac while they look for viruses that do not exist, conveying no benefit whatsoever - other than to make you "feel good" about security, when you should actually be exercising sound judgment, derived from accurate knowledge, based on verifiable facts.
    Do install updates from Apple as they become available. No one knows more about Macs and how to protect them than the company that builds them.
    Summary: Use common sense and caution when you use your Mac, just like you would in any social context. There is no product, utility, or magic talisman that can protect you from all the evils of mankind.

  • Virus protection attacking lookout?

    I am running Lookout  6.0 on windows XP.  I have a 500 unit license and an integrator developer  license.
    We had a virus attack that required us to change our virus protection  software.  Once we had cleaned the virus, Lookout runtime would not run  without a username and password.  We did not previously have to enter a username or password.  Regardless of the password I enter, I see a message: "Logon failed:  Lookout security file does not  exist!"
    Also, when I try to  run Lookout, my virus software (Avast!) catches ljJARkhf.dll as a trojan  virus.  Is this a file used by Lookout?
    I tried repairing  the software from the installation CD, but that did not work.  I got a  message that Lookout was already installed and the repair did not  run.
    How can I get  Lookout running again?
    Thanks for your  help.

    Sure the Mac can get viruses.
    Off the top of my head I can think of two:
    The oompa loompa virus and the OSX.Leap
    Also, if you have (gasp) Microsoft Office installed on your Mac, it's been known to have viruses.
    Also, there's a virus that infects the ID tag of an MP3 that executes when you open it in finder.
    BUT, these are rare. But of course the Anti-Virus companies make virus scanning software for the Mac. Why? because some people will by it with the tiniest scare, and those anti-virus companies are the first ones to initiate a scare. Sounds a bit like insider trading, but in this case it's legal.
    I've been reading about the scare tactics that have been happening in the UK to do with the iPhone and the new AppStore. The likelihood of a virus getting into an app on the store is pretty minimal due to the amount of tracking Apple does on the code, but can it happen? Sure. Some of these idiots don't mind getting caught.
    But as of now, I'd certainly say you don't need it. BUT, if you feel you MUST get your music via P2P and you feel you MUST load this music into iTunes and sync it with your iPhone, I say you're on your own if you have trouble.
    Even on a PC, if you use common sense whilst browsing the Internet, checking your mail, etc., you can go your whole life without getting infected.
    So, you're question is valid, and I found this article which may be interesting to you:
    http://basshead.wordpress.com/2008/07/19/virus-protection-for-the-iphone-why/

  • What sort of spywear/virus protection does the macbook pro retina have

    what sort of spy wear/virus protection does a macbook pro retina have

    The system has built-in malware protection that Apple updates as required as long as you keep you system properly updated.
    There is no spyware protection. Only you can prevent spyware.
    Helpful Links Regarding Malware Protection
    An excellent link to read is Tom Reed's Mac Malware Guide.
    Also, visit The XLab FAQs and read Detecting and avoiding malware and spyware.
    See these Apple articles:
              Mac OS X Snow Leopard and malware detection
              OS X Lion- Protect your Mac from malware
              OS X Mountain Lion- Protect your Mac from malware
              About file quarantine in OS X
    If you require anti-virus protection I recommend using VirusBarrier Express 1.1.6 or Dr.Web Light both from the App Store. They're both free, and since they're from the App Store, they won't destabilize the system. (Thank you to Thomas Reed for these recommendations.)
    From user Joe Bailey comes this equally useful advice:
    The facts are:
    1. There is no anti-malware software that can detect 100% of the malware out there.
    2. There is no anti-malware that can detect anything targeting the Mac because there
         is no Mac malware in the wild, and therefore, no "signatures" to detect.
    3. The very best way to prevent the most attacks is for you as the user to be aware that
         the most successful malware attacks rely on very sophisticated social engineering
         techniques preying on human avarice, ****, and fear.
    4. Internet popups saying the FBI, NSA, Microsoft, your ISP has detected malware on
        your computer is intended to entice you to install their malware thinking it is a
        protection against malware.
    5. Some of the anti-malware products on the market are worse than the malware
        from which they purport to protect you.
    6. Be cautious where you go on the internet.
    7. Only download anything from sites you know are safe.
    8. Avoid links you receive in email, always be suspicious even if you get something
        you think is from a friend, but you were not expecting.
    9. If there is any question in your mind, then assume it is malware.

  • Do i need virus protection for my macbook?

    Worried about virus protection. Do I need it? What about temp files and junk that slows my system?

    Worried about virus protection.
    You should be. Nearly all third party "virus protection" utilities will only cause problems. OS X already includes everything it needs to protect itself from viruses and malware. Keep it that way with software updates from Apple.
    A much better question is "how should I protect my Mac":
    Never install any product that claims to "speed up", "clean up", "optimize", or "accelerate" your Mac. Without exception, they will do the opposite.
    Never install pirated or "cracked" software, software obtained from dubious websites, or other questionable sources. Illegally obtained software is almost certain to contain malware.
    Don’t supply your password in response to a popup window requesting it, unless you know what it is and the reason your credentials are required.
    Don’t open email attachments from email addresses that you do not recognize, or click links contained in an email:
    Most of these are scams that direct you to fraudulent sites that attempt to convince you to disclose personal information.
    Such "phishing" attempts are the 21st century equivalent of a social exploit that has existed since the dawn of civilization. Don’t fall for it.
    Apple will never ask you to reveal personal information in an email. If you receive an unexpected email from Apple saying your account will be closed unless you take immediate action, just ignore it. If your iTunes or App Store account becomes disabled for valid reasons, you will know when you try to buy something or log in to this support site, and are unable to.
    Don’t install browser extensions unless you understand their purpose. Go to the Safari menu > Preferences > Extensions. If you see any extensions that you do not recognize or understand, simply click the Uninstall button and they will be gone.
    Don’t install Java unless you are certain that you need it:
    Java, a non-Apple product, is a potential vector for malware. If you are required to use Java, be mindful of that possibility.
    Disable Java in Safari > Preferences > Security.
    Despite its name JavaScript is unrelated to Java. No malware can infect your Mac through JavaScript. It’s OK to leave it enabled.
    Block browser popups: Safari menu > Preferences > Security > and check "Block popup windows":
    Popup windows are useful and required for some websites, but popups have devolved to become a common means to deliver targeted advertising that you probably do not want.
    Popups themselves cannot infect your Mac, but many contain resource-hungry code that will slow down Internet browsing.
    If you ever see a popup indicating it detected registry errors, that your Mac is infected with some ick, or that you won some prize, it is 100% fraudulent. Ignore it.
    Ignore hyperventilating popular media outlets that thrive by promoting fear and discord with entertainment products arrogantly presented as "news". Learn what real threats actually exist and how to arm yourself against them:
    The most serious threat to your data security is phishing. To date, most of these attempts have been pathetic and are easily recognized, but that is likely to change in the future as criminals become more clever.
    OS X viruses do not exist, but intentionally malicious or poorly written code, created by either nefarious or inept individuals, is nothing new.
    Never install something without first knowing what it is, what it does, how it works, and how to get rid of it when you don’t want it any more.
    If you elect to use "anti-virus" software, familiarize yourself with its limitations and potential to cause adverse effects, and apply the principle immediately preceding this one.
    Most such utilities will only slow down and destabilize your Mac while they look for viruses that do not exist, conveying no benefit whatsoever - other than to make you "feel good" about security, when you should actually be exercising sound judgment, derived from accurate knowledge, based on verifiable facts.
    Do install updates from Apple as they become available. No one knows more about Macs and how to protect them than the company that builds them.
    Summary: Use common sense and caution when you use your Mac, just like you would in any social context. There is no product, utility, or magic talisman that can protect you from all the evils of mankind.
    ... What about temp files and junk that slows my system?
    OS X creates and maintains many temporary files. They are designed to increase your Mac's performance or to record events useful to programmers for diagnostic purposes. They are automatically deleted after a predetermined period of time or when available disk space becomes low and space needs to be reclaimed.
    The only processes that will slow down a Mac abnormally are ones that you install, and it's up to you to determine if what you install is "junk" or not. There is a large variety of junk software available, but if what you choose to install does not fall into a category of work productivity, entertainment, communications, or creativity, it's probably junk you don't need that will only waste your time, money, or both. If you don't install junk to begin with, you don't have to concern yourself with getting rid of it. If you do want to get rid of something though, the time to learn how to do that is before you install it, not after.

  • Internet Security and Virus Protection

    I am brand spanking new to the Mac world. Just bought a beautiful 27" iMac last week. My question, Is there a need for virus protection/internet security software with macs?? I have long heard the possible myth that macs dont get virus'. Is this true?? If not, what is best that uses the least memory to run??
    I have long loved AVG for windows

    Is there a need for virus protection/internet security software with macs?? I have long heard the possible myth that macs dont get virus'. Is this true??
    It is true that there are no Mac viruses at this time. There are a few trojans, but these are very rare and have threat levels ranging from low to none. See my [Mac Virus guide|http://www.reedcorner.net/thomas/guides/macvirus> for more details on this.
    As to internet security, one never knows when a new exploit will be discovered, but Macs are pretty secure. I've never used any kind of internet security software and have never needed it. Just use that internet filter that's between your ears and you'll be fine. There are also a couple good general security documents linked to at the end of my virus guide that will be good reads for this purpose.

  • Virus protection for Mac?

    Hello everyone.  I have been using Symantec for quite awhile now and finally figured out that it was causing my system to crash on a pretty frequent basis (Kernel Panic). 
    Question - Is virus protection even necessary for a Mac?  And if so what do you recommend?
    Thanks!

    1. This comment applies to malicious software ("malware") that's installed unwittingly by the victim of a network attack. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an intruder who has hands-on access to the victim's computer. That threat is in a different category, and there's no easy way to defend against it. If you have reason to suspect that you're the target of such an attack, you need expert help.
    OS X now implements up to three layers of built-in protection specifically against malware, not counting features such as address space layout randomization that may also apply to other kinds of exploits.
    2. All versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files, and to block insecure web plugins. This feature is transparent to the user, but internally Apple calls it "XProtect." The malware recognition database is automatically checked for updates once a day; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders.
    The following caveats apply to XProtect:
    It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets.
    It only applies to software downloaded from the network. Software installed from a CD or other media is not checked.
    3. Starting with OS X 10.7.5, there has been another layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications and Installer packages downloaded from the network will only run if they're digitally signed by a developer with a certificate issued by Apple. Software certified in this way hasn't actually been tested by Apple (unless it comes from the Mac App Store), but you can be reasonably sure that it hasn't been modified by anyone other than the developer. His identity is known to Apple, so he could be held legally responsible if he distributed malware. For most practical purposes, applications recognized by Gatekeeper as signed can be considered safe.
    Gatekeeper doesn't depend on a database of known malware. It has, however, the same limitations as XProtect, and in addition the following:
    It can easily be disabled or overridden by the user.
    A malware attacker could get control of a code-signing certificate under false pretenses, or could find some other way to evade Apple's controls.         
    4. When you install the Apple-supplied Java runtime (but not the Oracle runtime), a third layer of protection is added: a "Malware Removal Tool" (MRT). MRT runs automatically in the background when you start up. It seems to check for, and potentially remove, malware that may have evaded the other protections via a Java exploit (see below.) Like XProtect, MRT is presumably effective against known attacks, but maybe not against unknown attacks. It notifies you if it finds malware, but otherwise there's no user interface to MRT.
    5. Beyond XProtect, Gatekeeper, and MRT, there’s no benefit, in most cases, from any other automated protection against malware. The first and best line of defense is always your own intelligence. All known malware circulating on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "trojan horses," which can only have an effect if the victim is duped into running them. The threat therefore amounts to a battle of wits between you and the malware attacker. If you're smarter than he thinks you are, you'll win.
    That means, in practice, that you never use software that comes from an untrustworthy source. How do you know whether a source is trustworthy?
    Any website that prompts you to install a “codec,” “plug-in,” "player," "extractor," or “certificate” that comes from that same site, or an unknown one, is untrustworthy.
    A web operator who tells you that you have a “virus,” or that anything else is wrong with your computer, or that you have won a prize in a contest you never entered, is trying to commit a crime with you as the victim. (Some reputable websites did legitimately warn visitors who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.)
    Pirated copies or "cracks" of commercial software, no matter where they come from, are unsafe.
    Software of any kind downloaded from a BitTorrent or from a Usenet binary newsgroup is unsafe.
    Software with a corporate brand, such as Adobe Flash Player, must be downloaded directly from the developer’s website. If it comes from any other source, it's unsafe.
    6. Java on the Web (not to be confused with JavaScript, to which it's not related, despite the similarity of the names) is a weak point in the security of any system. Java is, among other things, a platform for running complex applications in a web page, on the client. That was always a bad idea, and Java's developers have proven themselves incapable of implementing it without also creating a portal for malware to enter. Past Java exploits are the closest thing there has ever been to a Windows-style "virus" affecting OS X. Merely loading a page with malicious Java content could be harmful. Fortunately, Java on the Web is mostly extinct. Only a few outmoded sites still use it. Try to hasten the process of extinction by avoiding those sites, if you have a choice. Forget about playing games or other inessential uses of Java.
    Java is not included in OS X 10.7 and later. Discrete Java installers are distributed by Apple and by Oracle (the developer of Java.) Don't use either one unless you need it. Most people don't. If Java is installed, disable it — not JavaScript — in your browsers. In Safari, this is done by unchecking the box marked Enable Java in the Security tab of the preferences dialog.
    Regardless of version, experience has shown that Java on the Web can't be trusted. If you must use a Java applet for a specific task, enable Java only when needed for the task and disable it immediately when done. Close all other browser windows and tabs, and don't visit any other sites while Java is active. Never enable Java on a public web page that carries third-party advertising. Use it, when necessary, only on well-known, login-protected, secure websites without ads. In Safari 6 or later, you'll see a lock icon in the address bar with the abbreviation "https" when visiting a secure site.
    Follow the above guidelines, and you’ll be as safe from malware as you can practically be. The rest of this comment concerns what you should not do to protect yourself from malware.
    7. Never install any commercial "anti-virus" or "Internet security" products for the Mac, as they all do more harm than good, if they do any good at all. If you need to be able to detect Windows malware in your files, use the free software ClamXav — nothing else.
    Why shouldn't you use commercial "anti-virus" products?
    Their design is predicated on the nonexistent threat that malware may be injected at any time, anywhere in the file system. Malware is downloaded from the network; it doesn't materialize from nowhere.
    In order to meet that nonexistent threat, the software modifies or duplicates low-level functions of the operating system, which is a waste of resources and a common cause of instability, bugs, and poor performance.
    By modifying the operating system, the software itself may create weaknesses that could be exploited by malware attackers.
    8. ClamXav doesn't have these drawbacks. That doesn't mean it's entirely safe. It may report email messages that have "phishing" links in the body, or Windows malware in attachments, as infected files, and offer to delete or move them. Doing so will corrupt the Mail database. The messages should be deleted from within the Mail application.
    ClamXav is not needed, and should not be relied upon, for protection against OS X malware. It's useful only for detecting Windows malware. Windows malware can't harm you directly (unless, of course, you use Windows.) Just don't pass it on to anyone else.
    A Windows malware attachment in email is usually easy to recognize. The file name will often be targeted at people who aren't very bright; for example:
    ♥♥♥♥♥♥♥♥♥♥♥♥♥♥!!!!!!!H0TBABEZ4U!!!!!!!.AVI♥♥♥♥♥♥♥♥♥♥♥♥♥♥.exe
    ClamXav may be able to tell you which particular virus or trojan it is, but do you care? In practice, there's seldom a reason to use ClamXav unless a network administrator requires you to run an anti-virus application.
    9. The greatest harm done by security software, in my opinion, is in its effect on human behavior. It does little or nothing to protect people from emerging threats, but they get a false sense of security from it, and then they may behave in ways that expose them to higher risk. Nothing can lessen the need for safe computing practices.
    10. It seems to be a common belief that the built-in Application Firewall acts as a barrier to infection, or prevents malware from functioning. It does neither. It blocks inbound connections to certain network services you're running, such as file sharing. It's disabled by default and you should leave it that way if you're behind a router on a private home or office network. Activate it only when you're on an untrusted network, for instance a public Wi-Fi hotspot, where you don't want to provide services. Disable any services you don't use in the Sharing preference pane. All are disabled by default.

  • Virus Protection using Parallels?

    Please excuse me if I have posted this in the wrong area. I am brand new to the world of Mac. I will be running MS XP under Parallels on my new MacBook for a few applications that have no Mac alternatives. I have read quite a bit that virus protection is not really necessary using OS X; my question is this: Will running XP on Parallels make my Mac vulnerable to more viruses? If it makes a difference, this computer will be on a network that has both Mac and PC users. Thanks.

    Should you run AV software with Parallels? If you are running Windows in it, absolutely. When running WinXP in Parallels you are running Windows and are at risk for adware and malware.
    Is your Mac at risk due to this? It can be but it need not be, that depends on how you use Parallels. Parallels creates a disk image and runs the virtualized installation from that disk image. Think of a big yard with a fenced in section. The yard is your Mac drive and the fenced in section is your Windows installation in Parallels. Without a gate, nothing can get it or out.
    Note I said without a gate. Parallels has the option of letting Windows share Mac folders. This is a convenient way to share information between Mac and Windows and it constitutes a gate. I create websites using Mac tools but before uploading them, I need to verify that they look correct in MS Exploder 5, 6, and 7. So I share the WebSites folder I have my user directory with my Parallels WinXP installation allowing me to load my websites in my Windows browsers. That means Windows can read and write to that folder and constitutes a potential danger to my Mac installation.
    So, use anti-malware software with Parallels? Yes. Worry that it might cause trouble for your Mac? A little. BTW, many ISP's offer free WIndows software. Check yours out.

  • Virus protection, specifically Intego

    After reading several recent articles and speaking to people, I am almost convinced that I finally need virus protection for my iMac and new MacBook. I have heard that Intego VirusBarrier X5 is the best. Here are my questions:
    1) Do others agree that virus protection is now a good idea for the Mac?
    2) Does anyone have experience with Intego VirusBarrier X5 and, if so, what it is?
    3) Should I purchase Intego Internet Security Barrier or just VirusBarrier X5?
    Thanks

    I suggest reading the following and the provided links:
    Do You Need Anti-Virus Protection for Your Mac?
    According to Rich Mogull's article, Should Mac Users Run Antivirus Software?,
    "The reality is that today the Mac platform is relatively safe. There are hundreds of thousands of viruses and other malicious software programs floating around for Windows, but less than 200 are known to target the Mac, and many of those are aimed at versions of the Mac OS prior to Mac OS X (and thus have no effect on a modern Mac).
    It's not that Mac OS X is inherently more secure against viruses than current versions of Windows (although it was clearly more secure than Windows prior to XP SP2); the numerous vulnerabilities reported and patched in recent years are just as exploitable as their Windows equivalents. But most security experts agree that malicious software these days is driven by financial incentives, and it's far more profitable to target the most dominant platform."
    Mr. Mogull is a computer security expert. I recommend reading the entire article as it is quite informative.
    For additional information on viruses, trojans, and spyware visit The XLab FAQs and read the FAQs on viruses and spyware.
    I would avoid using the commercial products because most all of them seem to cause problems. If you feel you must have anti-virus software for your Mac, then I would recommend you use ClamXAV. It's every bit as good as the commercial products but has the benefit of only functioning when you run it, if you choose. It's also freeware and Open Source. You'll find it at VersionTracker or MacUpdate.
    OS X has an excellent firewall included. If you think you need more protection than that provided by your hardware router, then activate the built-in firewall via the Security preference pane.

Maybe you are looking for