Low End Mac Reader Specials

TypeStyler For Mac OS X is Now Shipping! Download The Free Fully Functional 60 Day Tryout at www.typestyler.com

OWC: Plug & Play Hardware RAID up to 8.0TB. High Performance, Data Redundant Solutions. FireWire 800, FireWire 400, USB2, or eSATA. Hot Swappable Bays, Data Rates over 200MB/s. Click here

Don't install Parallels to play poker online! Poker Mac will show you how to download and install a native Mac poker application such as Full Tilt Poker Mac.

Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.

Compare products like desktop computers, apple laptops, apple macs, and LCD Monitors side by side! All the information and reviews to make the best purchasing decision for new mobile phones, sat nav systems, or MP3 players. The Ciao online shopping community makes searching products easy for you.

[an error occurred while processing this directive]

Macintosh Love Bug

- 2000.05.11

Just a week ago the Windows world was infected by the LoveLetter worm - and that, labelled the first Open Source virus on Slashdot, spawned four variants within the first day. The media was hysterical, often forgetting that every operating systems besides Windows was immune to the "Love Bug."

Anne Onymus has done some leg work and managed to interview one of the Mac communities leading code crunchers.

5/11/2K: Macintosh über-hacker Jeeves Stob (yes, it's a pseudonym - and, we think, a clever almost-palindrome) gets frustrated every time there's a major virus.

Like a lot of Mac users, Stob never received a copy of the LoveLetter virus that was launched one week ago - at least not from an unwitting Windows user. He figures it must be because all his friends are too smart to run unknown enclosures or they use Macs.

Most likely, it's both.

Stob had fun perusing the Visual Basic code used to create the Love Bug after a hacker acquaintance forwarded him a copy. He said the code was not at all difficult to follow, explaining why it was so easy for others to modify the source code and create their own variants of the LoveLetter worm. Of course, the whole thing depends on the tight integration of Microsoft Windows, Outlook, and Visual Basic.

In Stob's words, "It's hard to say whether that integration is a good thing or a bad thing. It lets you do some very powerful things, but it also makes you a ready target for malicious hackers. In fact, it seems that Microsoft's email clients (and only on Windows) are the only ones capable of carrying such a payload and distributing it so widely. The ubiquity of Windows and Outlook among the masses create a tempting target for the kind of people who created Melissa and LoveLetter."

As for the Mac, Stob says that's a whole 'nother story. Mac users run many different versions of the OS and don't boot from a hard drive called "C:" - this presents a lot more variables for the potential Mac worm or virus maker. Mac users may or may not have Java. They may have disabled AppleScript. A hacker cannot depend on those kind of resources when creating a virus.

Maybe that's why there are only about five-dozen Mac viruses, compared with over 20,000 in the Windows/DOS world.

Mac viruses tend to be easily contained. People using Disinfectant (240K), a freeware antivirus program discontinued nearly three years ago, can easily clean up all viruses created before the AutoStart Worm and Word Macro viruses. The AutoStart Worm can be disabled simply by turning off Enable CD-ROM Auto Play in the QuickTime Settings control panel - and several free programs can detect and eradicate it, should your Mac become infected.

As for Word macro viruses, there have long been patches and settings to take care of them, too. Avoiding Word would also do the job, but with an estimated 94% of computer users across platforms using Word, that may not be a practical solution.

The Mac just isn't an attractive platform for the virus maker.

I asked Stob to speculate on how one might create something like LoveLetter for the Macintosh. He replied that it wouldn't be terribly difficult to create the worm itself using AppleScript or even the popular VISE software installer. As is obvious from LoveLetter, it wouldn't be hard to get the average user to run the program - just devise a cover letter and create a fitting file name and icon for the worm itself.

The program itself could cause no end of problems: renaming files, moving resources to other folders, overwriting files, etc. This would be no trouble at all for a good programmer.

The biggest problem is viral reproduction. Just how could the program send itself to everyone in the user's address book when Mac users choose from such a broad variety of email clients: Eudora, Outlook Express, Claris Emailer, Pegasus, Netscape, QuickMail, MailSmith, Green, SafeMail, SnapMail, and PowerMail among them - not to mention Web-based email.

The simple fact is, to successfully launch a program like LoveLetter on the Mac, the hacker would have to address at least the three or four most popular mail clients. Even then, with Mac users representing perhaps 10% of the worldwide installed base, the worm would have a tough time delivering itself to enough people who had Macs, would actually run the program, and would be using one of the targeted email clients.

No matter how good a Mac worm, because the Macintosh is a minority platform, it could never cause the kind of widespread damage and hysteria of Melissa or LoveLetter. There might be a few isolated cases, but the media would never even take notice of it.

Stob notes that hackers want notoriety, which means they have to target Windows, the dominant operating system, and its most common applications. This explains Word and Excel macro viruses, as well as email-borne viruses that are dependent on Microsoft email clients.

They won't get their fifteen minutes of fame any other way.

Has Stob himself ever created a virus? Grinning, he explains he has a collection of viruses for almost every operating system - safely stored on CD-ROM. He's learned a lot of tricks and written his own code for any number of operating systems (he's given up on Windows, because there's no challenge there), but has never released a virus into the wild. "They're a great learning tool," he notes.

Stob's personal favorite isn't really malicious, but something akin to the Belgian "pie in Gates' face" scenario. Years ago, when it looked like the NeXT Computer might actually compete with the Mac, Stob created a program that would completely overhaul the visual interface and play a sound at startup.

With Stob's little NeXT virus, Steve Jobs' little black box acted just like a Macintosh.

- Anne Onymus

Recent Rumor Mills

Microsoft Announces Cash for Clunker PCs, 07.29. Beleaguered Microsoft, with declines in profits and market share, is offering cash for old computers to boost sales of new PCs with Windows Vista installed.
StealthMac: 2 Hardware Solutions for Mac OS X on Windows PCs, 01.26. Apple has been working on hardware to put a Mac inside a Windows PC for over a decade. The latest developments, according to our MacMole.
Apple Announces Mac OS X Licensing, 01.14. Apple decided it would rather switch policies than fight Pystar and others. OS X licensing program could change Psystar's future.
New Apple drive supports Blu-ray and HD DVD, 09.11. Tired of being second-guessed and sometimes outmaneuvered by Microsoft, Apple has embraced both next gen DVD formats with its new SuperDrive Extreme.
More in the Rumor Mill index.

Links for the Day

Mac of the Day: 17" iMac G4/800 MHz, July 2002 - The iMac 'grows up' with a 17" 1440 x 900 display.
Group of the Day: LisaList supports Lisa users.
November 8 in LEM history: 99: OS 9: I think I like it - 01: The simplified Mac life - Soured on Windows - Flea market Mac - 02: Little room for improvement in new 'Books - Combo drive upgrade for iceBooks - 04: Re-Porter - 05: Fix the old iMac or buy a Mac mini? - Apple's Copland project - 06: MacBook Core 2 - MacBook value equation - Cheap is as cheap does - 07: Problems with Classic mode in Tiger - The G4 Power Mac that won't run Leopard
Support Low End Mac

Recent Deals

Best Mac Pro Deals, 11.03. Used 2.66 GHz 4-core, $1,300; 3.0 8-core. $2,299; refurb 2.66 4-core Nehalem, $2,149; 2.93, $2,549; 2.26 8-core, $2,799; 2.93, $4,999.
Best iPhone Deals, 11.03. New 8 GB iPhone 3G, $$99; refurb 16 GB 3GS, $149; new, $199; 32 GB, $299.
Best 12" PowerBook G4 Deals, 11.03. Used 867 MHz SperDrive, $348; 1 GHz, $499; 1.33 Combo, $298; SD, $559; 1.5 Combo, $448; SuperDrive, $589.
Best Power Mac G3 and PCI Video Card Deals, 11.02. Used beige 300 MHz, $25; G4/366, $49; blue & white 350, $80; 400, $90; 450, $105; PCI video cards from $15; shipping additional.
Best Power Mac G4 and AGP Video Card Deals, 11.02. Used 400 MHz, $50; 733 MHz, $69; 933 MHz, $209; 1.25 GHz dual, $299.
Best 15" MacBook Pro Deals, 11.02. Used 2.0 GHz, $800; 2.2, $900; 2.4, $1,000; refurb 2.53, $1,449; 2.66, $1,699; 2.8, $1,949; 3.06, $2,169; new 2.53, $1,579; 2.66, $1,799; more.
Best Mac mini Deals, 10.30. Used 1.33 GHz G4 mini, $379; 1.42, $389; 1.5, $419; 1.83 GHz Core Duo, $350; Core 2, $439; new 2.26 GHz nVidia, $580; 2.53 GHz, $770; Server, $990.
Best G4 iBook Deals, 10.30. Used 12" 1.07 GHz Combo, $225; 1.33 GHz, $298; 14" 1 GHz, $349; 1.33 GHz, $398; 1.42 GHz SuperDrive, $498.
Best Classic Mac OS Deals, 10.30. System 6.0.8 floppies, $10; 7.1, $12; 7.5, $20; 7.5 CD, $4; 7.6 $13; 8.1, $11; 8.5, $20; 8.6, $90; 9.0, $20; 9.2.2, $30.
More deals in our archive.

About LEM | Support | Usage | Privacy | Contacts

Entire Low End Mac website copyright ©1997-2009 by Cobweb Publishing, Inc., unless otherwise noted. All rights reserved. Advice presented in good faith, but what works for one may not work for all. Please report errors to .
LINKS: We allow and encourage links to any public page as long as the linked page does not appear within a frame that prevents bookmarking it.
Access our RSS news feed at http://lowendmac.com/feed.xml.
Email may be published at our discretion; email addresses will not be published without permission, and we will encrypt them in hopes of avoiding spammers. If you prefer your message not be published, mark it "not for publication." Letters may be edited for length, context, and to match house style.
PRIVACY: We don't collect personal information unless you explicitly provide it. For more details, see our Terms of Use.
Low End Mac is an independent publication and has not been authorized, sponsored, or otherwise approved by Apple Inc. Apple, the Apple logo, Macintosh, iBook, iMac, eMac, iPod, iPhone, PowerBook, MacBook, MagSafe, Mac Pro, Apple TV, and AirPort are registered trademarks of Apple Inc. Additional company and product names may be trademarks or registered trademarks and are hereby acknowledged.