PC Mag - Mac OS X Insecure

Suki writes "In this recent story a PC Mag writer concludes that "Panther and Jaguar were not better at outrunning vulnerabilities than Windows" and as my personal fav. ends by asking "How cocky are you feeling now, Mac elite? Hmm. Suddenly it's gotten pretty quiet around here." The article discusses many previous Windows security holes against a recent Mac OS X security flaw."

so, there's a hole

[squarefish (561836)]

and a known patch is on the way. it's a very easy vulnerability to avoid. there's no virus yet...

was it worth the rant, or has he just been waiting a long time to make it?

Not much of a comparison

[Bryant (25344)]

He's basically saying that since there was one widely-reported Mac security hole, Macs are as insecure as Windows? Odd comparison.

Mind you, I'm not too overwhelmed with his research; if he'd been paying attention, he'd have caught the SSH vulnerability the other month. It's not like Macs have been immune, and nobody with any clue claims they are.

What you can claim accurately is that Apple fixes holes promptly and fairly quickly, and that the MacOS X architecture does not have flaws which result in two or three active IE holes in the wild right now.

Apple isn't perfect, they're just pretty good. Microsoft isn't evil, they're just not as good as they should be. It's perfectly reasonable to use those two facts in making one's security decisions.

Re:Not much of a comparison

[BWJones (18351)]

What you can claim accurately is that Apple fixes holes promptly and fairly quickly, and that the MacOS X architecture does not have flaws which result in two or three active IE holes in the wild right now.

The other thing that you can claim is that Apple appears to perform more thorough testing of their security patches. I have been using OS X since beta and I have yet to have applied a patch that has caused any real pain. Windows on the other hand......Well, I cannot count the wasted hours I have spent either rolling back an update or scrubbing the hard drive clean and doing a reinstall due to Windows either seriously corrupting things or even worse, outright killing a machine. In fact, at our lab it was a W2k security update that killed a machine dead that was responsible for us replacing all of our W2k systems with 17in iMacs running OS X. I simply got tired of the grief associated with maintaining a Windows computer. We use our systems to get work done, not to goof around with maintaining Windows.

Re:Not much of a comparison

[nicodaemos (454358)]

Very good points. People who bundle their sense of self with their machine seem to get their panties in a bunch when their platform gets owned more than others. They seem to 'jump for joy' whenever a security vulnerability is distributed for some other platform. Personally I think this author should seek a priest, hobby or sufficiently drunk woman to help disassociate his feeling of being a man with owning a Windows machine.

Lance writes: I know this is wrong, but in one respect I was happy to learn earlier this month about the discovery of a significant security hole in the Jaguar and Panther versions (10.2 and 10.3, respectively) of the Apple operating system (OS).

Lance, let me tell you. It's not wrong for you to feel this way .... it's pathetic. Have you felt so diminished as a person this past summer, as wave after wave of virii pummeled your Windows box, that you now revel in the misfortune of others? Do you have these same insecurities about whether you purchased the correct toaster, hair dryer and nose hair clipper?

Get a grip on yourself, man! Stand up straight, take the panties off your head and start acting like you've got a pair! Repeat after me, I am not the products I buy. Sometimes the products I buy work out, sometimes they don't meet my expectations. When they fall short, it is not a reflection of who I am, my intelligence or the size of my magic wand. If the product fails, it is a reflection of the manufacturer.

Now go out there and do something useful with your life like kicking the butt of the manufacturers who sold you inferior products!

What a bunch of crap

[goombah99 (560566)]

Uh the so-called mac hole has been known since the days of NeXT. Its not a whole it was a deliberate choice for default settings. And that's the key difference. Windows security holes are totally blind siding bugs, whereas this so-called hole was a well documented and well considered choice.

Personally I would not have made that choice, but at least there was check box to turn off the default DNS trust. If only windows came with checkboxes to remove its bugs. And I dont mean like checkboxes that say "turn off scripting and cripple my browser please".

In fact mac has not even fixed the so-called hole because its not neccessarily a mistake.

In any case the SSH vulnerability, and the screen-locker vulnerability were in fact true holes created by mistakes. These are what should be scrutinized. But these did not lead to widesperead network worms at least. they did not arrise out of a insecure by desing attitude that pervades all the Active-X philosopy, the power-user-by-default philosophy, the standards crushing embrace-and-extend, the optional log-in password philosophy, or the add features rather than fix bugs philosophy that rightfully inspires all the anti-windows zealotry.

Got quiet, eh?

[bgarcia (33222)]

I like how he acts as though nobody is willing to write back in defense of MacOS X.

Can someone tell him that HIS WEBSITE IS NOT A BLOG, OTHERWISE HE WOULD BE INUNDATED WITH REPLIES!!!!

Thank you. ;-)

Go to the PC Mag URL instead

[burgburgburg (574866)]

Go here [pcmag.com] to see the PC Mag version of the "commentary".

Then you can go here [pcmag.com] to discuss what a steaming load this "commentary" is. Oh, my gosh. Someone who already has access to your network can put a malicious machine on it that will lead to your Mac being owned when it reboots. That's so freakin' simple. Not like those astonishingly difficult Windows attacks of sending emails, setting up websites and/or having users download spyware. The sky is obviously falling. AAAAAHHHHHHH!

sad...

[h4x0r-3l337 (219532)]

It's pretty sad when Windows-users feel they have to start defending themselves by pointing out that other operating systems are vulnerable too. The last paragraph pretty much says all in that regard...

Next Month...

[Ridgelift (228977)]

But the mindlessly superior retort is always the same, "No, it's because the Apple OS does not have the same holes as Windows. OS X is just a better operating system."

Whatever. All OSes have their inherent problems, but next month, when Microsoft racks up another suit of deathly insecure vulnerabilities, OS X will probably be fixed and free from defects for another couple of months.

I'm not a Mac fanatic, but it's because OS X is based on Unix, and Unix is more elegant in its design that gives OS X its better security.

It's all about the scope...

[Ara (15000)]

The hole he's referring to requires some particular circumstances before it's even viable.

The attacker must:
Be on your local network
Already have control of your DHCP server

If both of the above are true, you already have much more serious problems.

While I agree that remote root/admin is bad juju, in this case it's hardly equivalent to the Windows remote admin exploits to which he's comparing it.

How many recent flaws?

[The Grassy Knoll (112931)]

> a recent OS X security flaw

That's the significant word, I think. A single one

it's quiet because you're such a pussy....

[otis wildflower (4889)]

... that you don't put your email in your attribution or anywhere in the article.. Luckily, thanks to Google, your bio reveals your email to be:

Lance_Ulanoff@ziffdavis.com

Share and enjoy!

Re:it's quiet because you're such a pussy....

[nathanh (1214)]

Lance_Ulanoff@ziffdavis.com

An e-mail address! Quick, send him an Outlook virus!

Quick!

[cgenman (325138)]

Quick, send him an Outlook virus!

I think I already did.

Is this really the same?

[pHDNgell (410691)]

So an attacker who can gain access to your network -- over a wired connection or wirelessly -- can trick an affected system into trusting a rogue machine, and when the compromised machine reboots, take it over and even attack other systems on the network.

So, a guy has to get on my network, set up another machine as a trusted server, wait for me to reboot, and then...? Is this a fair comparison to email viruses, etc...?

My cube's been up for 90 days. I plan to take it down and upgrade it eventually. Does this mean I'm going to be vulnerable?

Whatever.

I'll second that...

[American AC in Paris (230456)]

...I swear, if I see one more SoBig.X, CodeAqua, or MacNimda entry in my logs, I'm gonna snap.

It's about time Apple did something about the POS security in OS X!

And this guy is an editor?

[HarveyBirdman (627248)]

"How cocky are you feeling now, Mac elite? Hmm. Suddenly it's gotten pretty quiet around here."

That's the sound of no one caring what you think, Lance.

A series of what ifs, followed by the reaction of imaginary mac fields that exist only in Lance's head.

And the whole "Macs don't suffer viruses because there's so few" myth was dead and buried long ago. Sheesh. Who cares? If Lance is happy with his bloated, cheerless, abominable bugfest of an OS, more power to him.

And now, Obligatory Car Analogy: it's like Lance is sitting by the side of the road with his Chevy Vega that just flew to pieces for the fifth time that week, and he's pointing at the Lexus that just sped by because it had a defective radio knob that just fell off.

Re:And this guy is an editor?

[b-baggins (610215)]

Apache killed it. Apache runs 70% of the web. IIS receives 90% of the attacks and hacks.

Claiming that OS X sufers fewer hacks because it's a smaller market is a post hoc fallacy.

His reply to an e-mail I send him earlier today

[MouseR (3264)]

Excellent comments. Please post them in our forum:
http://discuss.pcmag.com/pcmag/start/?msg=32413 [pcmag.com]

-----Original Message-----
From: ***
Sent: Thursday, December 11, 2003 10:24 AM
To: Ulanoff, Lance
Subject: Eureka

Hello.

in your piece at http://www.pcmag.com/article2/0,4149,1408953,00.as p,
you have this to say in conclusion:

Ultimately, those on the Mac fringe have to face facts: Panther and Jaguar were not better at outrunning vulnerabilities than Windows. I expect other gaps will emerge, and while the Mac OS may still draw far fewer attacks, this discovery might suck a little wind (or is it Windows?) out of Mac radicals' sails. They can scarcely claim this was a minor hole. OS root access is serious stuff. How cocky are you feeling now, Mac elite? Hmm. Suddenly it's gotten pretty quiet around here.

So, that's all it takes for you? One potentially serious loophole in an
OS to declare it "no better at outrunning vulnerabilities than
windows"?

Have you recently counted the number of Cert advisory reports that have
come out for XP? Last I checked, more than a month ago, it was in the
40-some range. For XP alone. This year only. For the past few weeks,
those reports have come in bundles of 3-to-5 at a time. Nearly every
other week.

While gaining root access is serious on a Unix machine, you also need
to point out the fact that to be able to gain access to this loophole,
you absolutely need to be on the same subnet as the compromised
computer. Therefore shielding 60%-some percent of home Mac installation
(as those connect to the interner through some phone connection like
PPP) and a great deal (don't have numbers) of the remaining 40% still
not at risk, provided their Cable or ISDN, [A]DSL ISPs have done their
work properly.

It's not like one could attack the entire machine simply by sending an
email containing some VBL script. Right?

Of course I'm a Mac head. And I'm still as cocky as I've been since
roughly 1988. Because every time I see those IT folks around here
struggling to keep the company running when the next wave of Win
trouble appears, I'll be smiling at my desk, uninterrupted, and
occasionally offering to help (okay... I'm just pointing them to some
Linux site or Apple.com... but hey... I seriously believe that would
help
them).

Keep us entertained.

Have a good day.

yeah punk, I'm feeling lucky

[frankie (91710)]

How cocky are you feeling now, Mac elite?

• Number of Macs reported/suspected to be cracked by recent vulnerabilities: ZERO
• Number of Windows PCs known to be cracked by recent vulnerabilities: MILLIONS [google.com]

So... I'm feeling pretty damn cocky, thanks for asking.

Mac Elite?

[ibullard (312377)]

I've been a Mac user for four years now, but I still regularly use Windows and occasionally Linux. To me, Mr. Ulanoff seems to embody the worst type of Mac user - the cynical ex-user. All the Mac users I've talked to aren't snobby or "elite" but almost every single ex-mac user is. It's almost like they were upset that they had to leave MacOS and now all they do is spit insults at anyone who thinks that Macs are cool.

I feel bad for anyone who feels the need to put a group of users down simply due to their choice in tools. That goes for the "Mac elite" that Mr. Ulanoff has to deal with as well.

WSJ Article vs. PC Magazine

[COLUG (22898)]

You can find a better article about the OS X vs. Windows with respect to viruses here [wsj.com].

I have never been able to shake my perception of PC Magazine/ZD as just a shill for their biggest advertisers. Just ask yourself: Who butters their bread?

The new variant of "Apple's dying"

[inkswamp (233692)]

I understand that a lot of you here on Slashdot are new to the Mac (since OS X) but those of us who have been on Macs for longer recognize this type of junk tech writing for exactly what it is: an attempt to stir the shit and increase readership. It's probably easier to sell advertising on your site or magazine if you can create just the right anti-Mac tempest in a teapot and sell a few more copies or increase your web site hits. This tactic used to run under the headline "Apple going out of business" or "Apple to close up." Now that's mutated into a "critique" of security or speed claims or whatever. Sadly, there is a fraction of Mac users out there who are still willing to take this bait and play into the game. I'm not even looking at the article. Been there, done that. I recommend that you stare out the window and observe the slow but steady growth of the grass outside--that would be far more productive that playing into this kind of shameless, professional trolling masquerading as tech reporting.

PC Mag proves once again its writers are inept

[tres (151637)]

This guy should obviously keep to using PageMaker, and fixing fonts. He obviously doesn't know much about computers, and even less about OS security.

Microsoft's less-than-stellar OS security took a while to become apparent. In fact, the problem wasn't epidemic until a few years after the Internet took off. Windows' market domination makes it a target for the virus authoring community.

Um maybe that's because Microsoft built the OS around the paradigm of security by obscurity, where there was any security at all. The Internet was added as an afterthought to the OS. It wasn't built for a hostile environment. It was built around the idea of some knuckle-head sitting in front of it, playing games, writing Office Documents, printing office documents. It wasn't built (as UNIX and Linux systems were) to live in a hostile environment.

If the Macintosh OS ever became dominant, the tables would turn, and there would be just as many reports of viruses, security holes, and attacks on it as we currently have with Windows.

This argument is ridiculous. Apache hosts over 60% of the websites out there, and it's certainly not getting hit like IIS has. People who associate things like security problems with market share prove just how little they know about what OS security means.

In fact, Jon Lech Johansen, the same Norwegian who cracked the DVD security code, recently circumvented the iTunes music protection scheme.

Sorry, Jon neither cracked CSS nor the iTunes music protection. Both these items were posted to a bulletin board hosted by Jon. Being that this has not thing one to do with security, I'm baffled by this. It's truly an idiotic stretch to associate the popularity of iPod with iTunes DRM being cracked (which, by the way, it wasn't).

Security

[Archangel Michael (180766)]

Is being secure the same as security? Let us take a look and see. Starting out let us compare raw numbers.

Building A has one broken window, that is kind of small and can only be breached if you can get passed the outer gate (with its own security), and have the right (specialized) equipment.

Building B has many broken windows, and windows breaks as fast as they fix them. Many of the broken windows can be breached from down the street. The latest broken window could allow anyone to imitate building C, and only when you have entered the building do you realize that you have been duped into entering Goat's house of cx.

Which building is more secure?

The issue is that security is offered in LEVELS. No place is 100% secure, however some places offer much higher levels of security, providing a safer place to be.

So which building is more secure?

iTunes

[Mr Pippin (659094)]

To quote part of the article:

Meanwhile, we can already see what happens when Apple has a broadly popular product that cuts across platforms. The Apple iPod is the number one MP3 player, and now that its companion computer utility, iTunes, is available for both the Mac and the PC, it has become a hack target. In fact, Jon Lech Johansen, the same Norwegian who cracked the DVD security code, recently circumvented the iTunes music protection scheme.

An event like that occurring makes sense to me, since iTunes' popularity makes it a target worth hacking -- and whatever mystical Mac mojo there may be, it didn't go far in protecting a popular Apple product.

Steve Jobs stated when the iTunes music store was announced that the DRM would be hacked. The point was to provide a DRM solution that was not restrictive to honest users. That was delivered.

The author also says: DRM is NOT Evil

[GillBates0 (664202)]

DRM is not Evil [eweek.com]

His email address: Lance_Ulanoff@ziffdavis.com

His brief bio here [pcmag.com]

He's Right!

[teamhasnoi (554944)]

It did get really quiet around there. I'm sure that everyone was gathered around to see if he really was going to click 'Submit'.

Overheard whispers: "He's not going do it" "Yes, he is - you didn't see last months rant against one button mice?" "I dare you" "I bet his ethernet cables not plugged in" "It's been a pleasure working with you" "I knew he was an idiot, but nobody's that dumb" "Didn't his last article get taken out by the Melissa virus?"

Insecure?

[vitaflo (20507)]

How cocky are you feeling now, Mac elite? Hmm. Suddenly it's gotten pretty quiet around here.

I think you can add Lance Ulanoff to the list of things that are "insecure".

That's exactly why...

[raehl (609729)]

I do the majority of my computing work on my TI-92. Havn't had a virus yet!

Re:That's exactly why...

[Unregistered (584479)]

I wrote one actually

DISP "THIS IS A CALCULATOR "
DISP "VIRUS. GIVE IT TO YOUR"
DISP "FRIENDS AND CLEAR YOUR "
DISP "RAM"

i hate the lameness filter. ti code is all caps so i need to put a lot of non caps in here to balance it out. this is not capatilized. take that you worthless filter. the above wasn't yelling, but now i think i just night start.

Re:Mac isn't more secure, BUT:

[b-baggins (610215)]

No, he's doing the reasonable Mac observance that 50 versions of a greeting card program does not count.

Quick, someone mod parent down!

[Phekko (619272)]

We do not want to encourage behavior like this, do we? Reading the article, sheesh, what's next, checking for duplicates before posting?

Re:Good points...

[mystik (38627)]

It's almost root.

W/o some extra frobbing of permissions, all the Applications (in /Applications) are world writeable by users in the 'admin' group.

The first user in macosx is in the 'admin' group. Unless you make a 2nd user for yourself, you can basically overwrite anything in the Applications folder.

files /System/Library is root:wheel; 755, so that mitigates an OS-level attack... but still.

Re:Good points...

[ethanms (319039)]

I read the article too, this guy using a valid point:

Mac OSX is not perfect

To bash Macs... it's paragraph after paragraph of "See? I told you so."

I own a mac, but I use PC's at work and home, I barely notice a difference between the two when I move between them because most of the apps that I use, like Office and Mozilla are fairly close in appearance and functionality.

BUT... the absolute, positive, no questions asked fact, is that last time my office of 300+ people had some worm running around, my mac was NOT infected and I was not required to jump through IT-hoops for hours to get rid of it or prevent it from happening.

Whether or not it has flaws or not is a stupid question, of course it does... but so far they haven't proven to be anywhere near as disasterous as the bullsh*t that we have to deal with from Windows.

Re:Good points...

[gsfprez (27403)]

there are also incredibly FEW network services turned on (come on, someone spoofing your DHCP server on YOUR network and inserting malicious code? You've got bigger problems, my friend, than your vulernable Mac) out of the box when you install a Mac.

This in and of itself is another 50 pounds of "bite my shiny metal ass, Micro Soft apologist" to hand to the author of this article (i RTFA as well - he carped on a LONG time about this one quite obscure vulnerability, and didn't bother to name a single Mac virus or mail.app worm.. i wonder why?)

Until Microsoft changes their ways on having every useless network service turned on by defualt and making it easy (read: not requireing use of Regedit) to turn off and on services (read: Sharing System Preference Panel - checkboxes for all services), Macs will continue to be far less vulnerable to attacks than Windows is.

Re:Good points...

[garbletext (669861)]

Until Microsoft changes their ways on having every useless network service turned on by defualt and making it easy (read: not requireing use of Regedit) to turn off and on services (read: Sharing System Preference Panel - checkboxes for all services)

Control panel -> Administrative Tools -> services. easy as pie. That's not to say that the average windows user has a clue what a service is, let alone how to turn it off. The problem is that unnecessary services are on by default. But, hey, it's the age old compromise; out of the box simplicity vs. configurability.

Re:Good points...

[JHromadka (88188)]

That article had more flamebait than a Dvorak article. Yes it's an op-ed piece, but that was specifically designed for getting hits. When I went to PC Magazine's [pcmag.com] homepage, here is what I see on breaking news:

12.10.2003
Internet Explorer Spoofing Vulnerability Found
12.10.2003
Security Experts Warn of New Way to Attack Windows

This same "exploit" Apple claims is normal [slashdot.org]. One "exploit" will not make Mac users eat crow. Let's see some real OS X viruses and Apple having to release so many patches that it moves to a monthly bug release program first.

Re:Good points...

[by Anonymous Coward]

Actually, this is one of the more mind-bogglingly stupid articles from a Windows apologist I've read in a long time. It's even worse than most Slashdot wintrolls.

For the record, I'm not a Mac user and my few attempts at using it ended in annoyance and frustration. It does not, however, take a genius to recognize the logical leaps inherent in the author's petulant outburst.

To wit:

1) A single flaw does not compare to the egregious history of security problems on Windows.

2) The conjecture that if Mac OS were more used than Windows, it would have the same vulnerability rate is just that, conjecture, and it is unsupported in the article.

3) The iTunes/iPod "hack" is not comparable to an operating system comprimise. It is a comprimise of a digital restrictions management (DRM) system. DRM systems are known to be inherently vulnerable and practically insecurable. Nobody but deluded content industry executives expect DRM systems to have any more than brief protection. Also, once broken, they can't be fixed.

4) The swipes at Mac "zealots" are irrelevant ad hominems

5) The complaint about the complexity of MacOS X is silly. All software is complex. Some is just done worse than other.

There's nothing here to see.

Re:Good points...

[McDutchie (151611)]

seem to remember that the OSX machine prompts for a password before making the changes though. That's a definite advantage.

Exactly, it's actually the root account and not the user account that installs the programs. Think of it as a GUI version of sudo.

Re:Good points...

[danielrm26 (567852)]

"Actually to be fair, you don't run as the administrator account in XP by default."

As others have noted, yes, you do. The main user you are asked to create when you setup a machine is an admin, and that is the account that most home users use.

Re:Good points...

[leifm (641850)]

I could be wrong on this, but I believe home doesn't even ask you to set up a user. It just sets up Administrator as the default account, with no password. I should know for sure, but it's been 6 weeks or so since I did a Home install, but at any rate I think that's how it works.

Re:Good points...

[HoldenCaulfield (25660)]

Actually, Power Users can do almost everything an Admin can do. They can't create Admin accounts, and they can install most programs. A nice reference table comparing accounts is at http://www.bc.edu/offices/help/meta-elements/doc/a rticles/html/SW-WinXPUserAccounts.shtml [bc.edu]

Re:Same DHCP "Flaw"

[jimbo3123 (320148)]

The earlier slashdot story is here: http://apple.slashdot.org/article.pl?sid=03/11/28/ 2226226&mode=thread&tid=126&tid=172&tid=179&tid=18 5&tid=190

Dave Schroeder writes, "This isn't so much of a root vulnerability as a default configuration that trusts the integrity of the local network services. This functionality has been around since NeXTSTEP, and is designed to allow for auto-configuration of new servers/machines brought into the network."

Re:Hum...

[Valdrax (32670)]

I can feel a big commentary fight coming on this post :)

Pro-MACs on my left, pro-PCs on my right.

I think Rush Limbaugh might take offense at being placed on the Left [macnn.com].

Re:Hum...

[prockcore (543967)]

Pro-MACs on my left, pro-PCs on my right.

I'm Stuck in the Middle with you.
Yes I'm stuck in the middle with Linux.

Re:The author is an idiot

[psychogentoo (582658)]

In regards to the Directory Access / malicious DHCP vulnerability, the "use DHCP-supplied LDAP server" option is turned on by default. For this vulnerability to be exploited, either you're using an "untrusted" network or your network got hacked!

If you don't use a DHCP / LDAP server then its recommended that you turn it off.

This is from the apple site:
You don't use a directory service

1. Click the Finder icon in the Dock.
2. From the Go menu, choose Applications.
3. Find the Utilities folder and double-click to open it.
4. Open the Directory Access utility.
5. Click the lock button, type your password, and click OK
6. to authenticate.
7. Select the LDAP service and click Configure.
8. Deselect the "Use DCHP-supplied LDAP Server" option. See Figure 1.
9. Click OK. Your computer is no longer susceptible to this exploit.

Re:unix vs windows security

[afabbro (33948)]

unix is designed to be more secure than windows

Sorry, but this is nonsense. UNIX *is* more secure than Windows, but Windows was *designed* with more security in mind. UNIX comes from an academic background where loose and free access is the norm (or was in the 70s). All of the security trappings are post-hoc.

Now if you want to say that UNIX's technical excellence is demonstrated by the fact that even security being a crude add-on, it's still superior to Windows' baked-in attempts, then you would of course be right. But UNIX was never designed for security from the ground up...

reaping and sowing.

[gosand (234100)]

Security is only as good as how often the users patch.

Wrong. There is something to be said for how security is considered in the design of an OS. For Windows, it wasn't much of a consideration, which contributed heavily to why there have been so many systemic vulnerabilities.

The system was designed to be user-friendly, not secure. They got their market-share because of that fact. I think it is much easier to make a secure system user-friendly than to make a user-friendly system secure. Microsoft is finding that out as well. You reap what you sow.

Re:If Mac OS X were REAL unix...

[b17bmbr (608864)]

AFAIK, Joe Blow can write to / on a new 10.2 install. This is madness.

then, apparently, you don't know jack. you absolutely cannot write to / unless you (and follow this carefully):

1) open up a terminal
2) type sudo
3) then type say: cat /etc/hosts >> /hosts.txt
4) type password

you my friend, are full of shit. now, if like me, you create another user, which i always run at, then i have to open the term, su to an admin user, then sudo. osx turns off root by default. to enable it, you have to go into net info, and specifically enable root, THEN, you have to change it's terminal from /dev/null to /bin/bash (or whatever). apparently somebody at apple actually thought about security BEFORE they shipped the product. evn if yo install any application, the best you can do is install it into ~/Applications. if you want to install it into /Applications, then it asks for a admin user AND a password. make shit up in chat rooms. not /.