Path: csiph.com!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail From: Jolly Roger Newsgroups: comp.sys.mac.system Subject: Re: Mac Malware Date: 15 Mar 2017 15:45:06 GMT Organization: People for the Ethical Treatment of Pirates Lines: 58 Message-ID: References: <4wPvA.84517$i7.38100@fx30.fr7> <100320171345028704%nospam@nospam.invalid> <2YadndhrWN5Q2VnFnZ2dnUU7-V2dnZ2d@giganews.com> <120320171655440711%nospam@nospam.invalid> X-Trace: individual.net TPmFXfQkDFjFZrHViMbtNA4RMO/D0tUvCImlOvVPWJycVA5jv9 Cancel-Lock: sha1:lCpL3fmjuxg/h7MY23ub30zaak8= Mail-Copies-To: nobody User-Agent: slrn/1.0.1 (Darwin) Xref: csiph.com comp.sys.mac.system:102365 On 2017-03-15, FPP wrote: > On 2017-03-13 14:42:08 +0000, Jolly Roger said: > >> So it wasn't that "so much crap" had been left behind by numerous apps; >> it's that one piece of software for Wacom tablet drivers wasn't >> completely removed. I get the attraction to utilities that go looking >> for cruft to remove; but the fact is this problem you encountered is >> easily avoided by following the removal instructions recommended by the >> manufacturer of said software. If you always use the recommended removal >> procedure, you won't have this issue. I'm living proof of this, BTW. : ) > > Well, one piece for sure. We cleaned out everything because we're in > the business of printing, and not in the business of playing with > computers. There's really nothing to "play with" when you use the removal method recommended by the software maker. > We didn't even KNOW somebody had installed the Wacom software. I have > to assume it was done on an off-shift by someone who was using his > tablet on his own time. Wacom software installs drivers that require administrative access to install. Do you let just anyone have administrator access to your Macs? That seems like a *really* bad idea. Why not use the Guest account feature built into macOS to let strangers have access in a more secure fashion? > In work, our Macs are just tools... To *most* people, computers are just tools. > One of them still runs Snow Leopard, for fuck's sake! We even have an > old blue and white G3 that runs OS9 in "classic" mode - just so we can > run an old version of Fontographer. That's not uncommon. I have two Mac minis running Snow Leopard in my house. > And before you ask, we only use it to make the .afm files our old > Packaging software requires. My supervisor isn't going to authorize > spending another $400.00 just to make an .afm file a couple of times a > year. I strictly control what my old Snow Leopard machines do, and I don't open any services on them to internet traffic due to the many security holes they have that have since been patched in later operating system versions. Anyway it sounds like your supervisor should invest just a little time in securing your Macs so that unauthorized strangers can't install stuff on them which requires administrative access. -- E-mail sent to this address may be devoured by my ravenous SPAM filter. I often ignore posts from Google. Use a real news client instead. JR