RE: Mac X-Server Security Questions...

["Brad Berson" <brad.berson () bytebrothers org>]

Thank you Javier, you gave me many good sources of information.

Does Apple walk you through forensics if you think you're a zero-day
victim?

Not much point arguing quantity or criticality - my suspicion is that
every OS and their respective increasing number of layered bits and
pieces have more or less as many holes, and it's just a matter of how
many people are willing to devote their time and energy finding them.
Unfortunately it seems like hackers with mischievous intent are very
energetic indeed.  A rootable exploit on one OS is just as critical as a
rootable exploit on another, and being victim of a zero-day is costly
and alarming, be it public or otherwise.

I think I'm encountering something of a conundrum now.  Best security
practices dictate the use of multiple platforms to limit the extent of
hacking damage through diversity.  But the same diversity results in
much more work necessary to track vulnerabilities and patches on those
extra platforms.

-Brad

---------------------------------------------------------------------------
Earn your MS in Information Security ONLINE
Organizations worldwide are in need of highly qualified information security
professionals.  Norwich University is fulfilling this demand with its MS in
Information Security offered online.  Recognized by the NSA as an
academically excellent program, NU offers you the opportunity to earn your
degree without disrupting your home or work life.

http://www.msia.norwich.edu/secfocus_en
----------------------------------------------------------------------------