Neowin.net

I'm getting used to this type of behavior from Apple. This really is nothing new.

+1. Apple's general viewpoint on security issues seems to be "Bah, don't bother us, go away". They have unfortunately demonstrated this many times.

It's actually quite weird. I guess if they started taking this seriously - they'd have to change their commercials or something? With a company that has been doing as great as they have (and deservedly so in large amount IMO) - they just seem to "not get it" on this subject.

Dismissing security holes is never a smart move.

One day their lacklustre view of security will bite them on the ass. Hard. All it takes is one major trojan/virus outbreak and the whole "Macs are Secure!" thing is busted.
Hell, even in the last 12 months the number of vulnerabilities and exploits in Apple's software appear to have shot up, it's really only a matter of time before the general population realise that Apple is no better than Microsoft.

Currently, security has been focused on stupid users and how to burden the rest of the users, if i want to download a .exe file, then i don't want to be asked for stupid question if i want to execute it or not, but there are several users that still download hideous exe files (such as britney_spears_tits_avi.exe ) and execute it, then later they blame about the firewall (!, antivirus and microsoft.

"Apple Dismisses Safari Download Issue"
Have they ever admitted to a problem?


"Enterprises have begun paying closer attention to Safari in recent weeks because of a rise in the browser's market share on Windows." Ha ha ha ha, name one.

"Enterprises have begun paying closer attention to Safari in recent weeks because of a rise in the browser's market share on Windows."

Will they publish the number of user's that got Safari without ever being asked?

Security is very important to "dismiss it" just like that. They should say that they will make a research on this to see if it affects or not Safari users.

comes down to pure arrogance, good luck

the bubble will burst ultimately, i fear. Which is a shame because (as mentioned above) they've come on leaps and bounds with regards to market share and image compared to the 90's, where it was a bit of a joke, and to wreck that "it just works" mentality that they've created would be a shame.

Fun to watch though - I doubt that they'd dismiss it if it were a serious outbreak.

Serious question - do macs ship with AV these days?

Less serious question - Why was I a hardcore Mac-user when they were rubbish and now when they are really nice do I only have Windows boxes? Weird! Don't have the cash really atm to get all the white shiny things I want - Could be a factor....

am i the only one who does not think of this as a security hole, and in fact enjoys the fact that safari doesn't think i am a complete retard and execute every single file i download whether i ask to download said file or not. the internet on firefox has far too many pop ups and safari deals with this issue very well.

admittedly with apples focus on usability for users with any computer experience, this kind of freedom is not always a good thing, i know for certain my mother would run any download she gets or at least not understand why it is downloading. i do think though that the same problem exists with any download notification, and before you run any executables in safari you get the standard windows safety pop up.

recently there seems to be many apple bashing moments calling lack of ubertight security features a 'security hole'; an example is the paypal saying a lack of anti-phishing measures meant safari was unsafe. perhaps this is true..... if the user doesn't understand what paypal is.

"A security researcher has published a demonstration exploit that takes advantage of the download mechanism in Apple's Safari browser to automatically download files onto a user's system. "

A problem Protected Mode IE cannot ever have because of how file downloads are handled