OSNews

If you read the article he's not attacking Apple. He has criticized various things publicly, probably because he loves the platform and wishes for it to shine. Here he is reflecting on the past and offering opinions that at least sound somewhat naive when put into a news article.

there is this even more famous computer vip who seems to think memory protection not really necessary see 3.7 of

http://www.cs.inf.ethz.ch/~wirth/Articles/GoodIdeas_origFig.pdf

Wirth only says that it memory protection "should" have been superceded by safe languages and correctly implemented compilers.

While creating a safe language is certainly possible (if you're prepared to pay the cost in flexibility and/or performance), ensuring a correct implementation that is safe not only from accidental bugs but also from malicious exploits is a huge problem.

Meanwhile, hardware memory protection may not be as fain-grained as compiler-based schemes, but it costs very little in performance and one can be fairly certain that it's correct.

I did understand what Wirth says and I do share your reservations but
i responded to
" i can't imagine how a os without memory protection can be "secure" "
and maybe Wirth can help a person imagining that?

But in this context we are really talking about a specific system, not that you, in theory, can make a secure system without protected memory. I don't think anyone would doubt that it is possible even without reading Wirths work, it just wouldn't make sense that using protected memory was the one true way.

Now about MacOS 9 being secure without it, hell, it wasn't even close to being stable, so i seriously doubt it would be, in any way, secure. I personally think the Macintosh would be dead if they hadn't switched OS. I just don't see how they could fix up an OS that in important ways were technologically behind even Windows 95. (of course it would be possible, but would be a slow and expensive process)

Another question would be, how many of the current MacOS X users would have used a system based on OS 9. I know i wouldn't have touched it with a 10' pole :-)

Well you see the latest 3rd episode (I think) of channel 9's coverage of the Singularity project http://research.microsoft.com/os/singularity/ . IIRC they had about 10% increase in perform. To put that in perspective that would your safer compiled language would run faster than your C code. Java could be beating it regularly (but not always of course, because under some situations Java just starts to suck shit).

> hardware memory protection [cut] costs very little in performance

That's not what the guys from the Singularity project said: they had the same level of performance for system call with their unoptimised implementation as Linux or Windows.
The reason why they were able to do so is that they are not using the hardware memory protection.

L4/Iguana is a single address-space operating system also; it does not provide hardware memory protection and uses "protection domains" and "certificates" to achieve the same goal.

What? Safe? Maybe less crapware for home users, but the era of OS 9 was rife with server intrusion and other malicious Interweb warriors.

OS/2 and banks. Secure, obscure. Read about attcks on ATMs, etc then Vs. now when they run Windows as their moin interfaces. It has nothing to do with internet connectivity.

Maybe isolated, maybe noone cares. :-)

sure, obscurity works agains script kiddies doing wide spread generic attacks to make botnets.
But those sort of attacks aren't the one people should be worried about. They are easy to prevent on any OS.

Obscurity is pointless when a direct attack is made on you company by someone(competitor, theif, etc.) to steal your data or spy on you. The attack would have researched you company and know that you were running OS 9.
They would get a copy of OS 9 and do some random attacks on it's network services to attempt to uncover bugs, and surely there would be many because being obscure also means having less resources to search for bugs.

Or, the attacker might just send you an email with a malicious program attached that expoilts the lack of memory protection in OS 9 and gain complete control of your system.

"Subtract the internet, and you have a system which is more secure from attacks than the open-soemse urce and well-understood BSD."

Uh, if you subtract the internet and any outside connectivity all systems are equally "secure".
You cant compare a connected BSD system to a disconnected OS9 system.

True-ish. If you are working on a machine not connected to the Internet on which you have no administrator privileges, you can't install anything that'll damage more than your own user account.

"Secondly, you have to admit that OSX is ten times the OS that OS9 was, you really can't compare them. The more features you have the more little bugs will sneak in the door."

I'm not a programmer, nor am I a mac user, but I did learn C for a couple of months on PowerMacs, a few years back. In CodeWarrior, running on top of (I think) OS8. Well any memory allocation mistake in my (crappy) code used to bring the entire system down at runtime. Fatal error message with the bomb and all.

It may have been more secure at the time, but there was probably not much that could be saved under the hood...

And, among many of the other benefits already mentioned above and elsewhere, buying NeXT got Jobs back in the company. Really, some would say that they paid $400 million for Jobs, and got OPENSTEP as a free bonus.

Edited 2006-10-26 04:11

Those who know the history of Apple easily recognize that Steve Wozniak was the man behind the technical splendor that was emerging. Apple I, Apple II was due to his labour.

Yes, that is the common myth, but read the book "On the Edge" about the history of Commodore and you get a very, very different perspective of the Woz. He is not and was not the god that some people make him out to be.

Commodore?

"He is not and was not the god that some people make him out to be."

Indeed. Commodore, Acorn and various other companies were making better engineered 6502-based microcomputers than Apple were, although Woz's "from scratch" hardware hacks do afford him some respect.

I think what Woz is hinting at is that Apple needed not ditch the structure of OS 7-9 in favour of a UNIX-based one. I think he wants to say, hey, we could've extended and improved our existing OS, so that it would be capable of doing all the things OS X does now.

And I think he has a point.

...need one say more?

How many years of development was it before Apple finally discarded the idea of the '32-bit, multi threaded, multi tasking, memory protected, smp-aware modern OS based on OS 7.x'???

I personally don't think they'd ever get it right... It'd be too much work, too many changes had to be done.

Edited 2006-10-25 21:32

SO they could have spent millions trying to get their not-so-great older OS proper memory protection, SMP support, preemptive multitasking etc etc or purchase a very nice, already completed OS and add a VM that would run a version of the older os for backwards compatibility?

I think NeXT was a MUCH better choice. They would have had to completely rewrite classic and still had to use a VM (most likely) to be properly compatible with older apps.

or maybe im totally wrong.. who knows...

Erm, it is not as if OSX is NeXT 2.0. They used components and ideas from NeXT.

I think that in the end, either way would've succeeded. Personally, I would've preferred they bought Be, since I like BeOS more than I do UNIX or UNIX-like systems.

Thats good! Since the versions were up to Openstep 4.2!

And, OSX is more Openstep than you think.

Erm, it is not as if OSX is NeXT 2.0. They used components and ideas from NeXT.

Having actually used NeXT for a while back in the day, saying OSX uses components of NeXT is silly. It is not a fundamentally different OS, OSX IS NeXT. It is heavily modified under the hood and has a spiffy new paintjob, but it is still NeXT. OSX is NeXT with components of System 9 in it, not the other way around.

"I think NeXT was a MUCH better choice. They would have had to completely rewrite classic and still had to use a VM (most likely) to be properly compatible with older apps."

Indeed. Apple's operating system rewrite projects were just tar pits, and the infighting and politics that make up 90% of the Apple story would have made the whole strategy unviable. If you have to credit Steve Jobs with one thing it's cutting right through all that and giving the Mac the operating system it should have had all along.

If you're talking about Rhapsody ...? From what I understand, anything that offered protected memory, true multiprocessor support, and multitasking was going to require a start from sratch approach; very little of the original OS could've been used.

I agree that Woz has a point.

Apple's failure to produce a "modern" operating system was the result of bad management, rather than the shortcomings of the classic Mac OS. It took Apple many years after the acquisition of NeXT to recover from those management issues and produce a mediocre operating system (Mac OS X 10.0 and Mac OS X 10.2).

Carbon itself should be ample evidence that Mac OS could have been modernized. It is the classic Mac OS API, adapted for memory protection and preemptive multitasking and other such goodies. But Apple felt that they had to reinvent itself, so NeXT became the keystone.

"Sorry, an error of Type 11 occurred."

That always made me wonder. Wouldn't the kind of people the Mac is marketed towards (non-techies, basically) think, "What the F*CK is an Error of Type 11?!"

I never did figure that out I had a PowerPC 603e upgrade in the 520c, before that it was Type -1 errors or something.

You're right, though... not at all user-friendly!

I remember using OS 7 before the internet was even a reality.

The internet pre-dates the MAC, so I wonder what hardware platform you were using OS 7 on.

The internet pre-dates the MAC, so I wonder what hardware platform you were using OS 7 on.

Are you confusing the original ARPAnet with internet? The pubicly held concept of the internet is a 1990's thing, and last time I checked the Mac was first made in 1984.
Regardless, the world wide web was several years after the introduction of the internet (back then it was all the proprietary BBS's, AOL, Compuserve, GEnie, et cetera) and Internet Explorer for the Mac came even later than that. It doesn't change the original point that there were stability problems with OS 7 long before Internet Explorer first graced the platform with it presence.

Edited 2006-10-26 12:28

Are you confusing the original ARPAnet with internet?

In '84, we split MILnet from ARPAnet with only a few trusted gateways allowed. At that time we started calling it the internet, although it was always an internet. The "public" internet started when we split off NFS net and DARPA stopped funding. At that time it became possible to access the net via a limited number of commercial ISPs.

You're "90s" thing was when we allowed the internet to be used for commercial purposes. Bad mistake, but there's no going back.

In '84, we split MILnet from ARPAnet with only a few trusted gateways allowed. The "public" internet started when we split off NFS net and DARPA stopped funding. The "public" internet started when we split off NFS net and DARPA stopped funding. At that time it became possible to access the net via a limited number of commercial ISPs.

Merger of NSFnet and ARPAnet occured in 1986, but it was still for government and academic uses, if I recall correctly that was after the release of the original Macintosh wasn't it? Likewise widespread public use of the internet, specifically outside the government and academia, wasn't several years later. Furthermore Woz's contention about the IE browser caused the stability problem is more an issue of the world wide web aspect of the internet, not the network itself. While the first web server may date to 1990, it wasn't until 1993/1994 that anyone was really using it. At that point System 7 had been around with stability problems galore for some time.

You're "90s" thing was when we allowed the internet to be used for commercial purposes. Bad mistake, but there's no going back.

I know, it's been so horrible that we've managed to connect so many people to each other and information resources while at the same time letting people make some money in the process.

"Since when has THAT been a good idea?"

Are you saying that strong passwords isn't a good idea? There's good obscurity and bad obscurity.

Woz never says OS9 is more secure than OS X, not once!

Oh? He clearly says OS 9 was more secure than OSX:

"Not that Mac OS 9 - the operating system that predated OS X - was not stable. According to Wozniak. “That was something to say for Mac OS 9. It was just so secure,” he said, denying that the security was based on the fact that being a minority operating system meant that nobody was interested in attacking it. He explained: “Mac OS 9 was differently constructed to anything else. It wasn’t because it was minor and unknown.”

Mac OS X on the other hand is built in Unix and is therefore is more prone to attacks because people are familiar with the holes in Unix, explained Woznaik. “Some of the holes in Unix are well known. So keeping Firewalls on is more important. And we keep announcing, even our own security fixes, not as many as Microsoft but still we never really had those in the OS 9 days."

I see the distortion field is still up and running .

Edited 2006-10-26 08:11

I think you got it all wrong. Ok, he does say Mac OS X is more prone to attacks. Its Unix and it has been around for more than 30 years. Sure its faults are well know. OS 9 was not an 'internet OS' and security via obscurity is no security at all. The worst thing is not being unsafe, is thinking you're safe when you're not.

He does compare OS9 to OSX when he says that, and I quote again "Looking back it’s a good thing we have a better more stable more complete better operating system, from the ground up"

Once again, comparing to OS9 in Woz's own words, OSX is:
- Better
- More stable
- More complete
- Better operating system

No distortion whatsoever. I really think you got it all wrong.

No distortion whatsoever. I really think you got it all wrong.

No, YOU get it wrong. He says CLEARLY that OSX is less secure than OS9. It's RIGHT THERE in plain sight.

"That was something to say for Mac OS 9. It was just so secure," he said. [...] Mac OS X on the other hand is built in Unix and is therefore is more prone to attacks [than OS 9] because people are familiar with the holes in Unix, explained Woznaik."

Governa, it's right there in plain sight: he says OSX is more prone to attacks than OS9. In other words, Woz says that OSX is less secure than OS9. Anyone not affected by the RTF understands that.

> No, YOU get it wrong.

It doesn't need to be an expert to realize Mac OS X is a better OS in every aspect (and I surely include security) than previous incarnations of Mac OS. I don't think Woz meant what you think he meant, and from what I've read, most of the replies seem to express the same feeling as mine.

One thing we agree is that we disagree. No hard feelings.

I still think you're flamebaiting though...

Edited 2006-10-26 14:01

Its Unix and it has been around for more than 30 years. Sure its faults are well know.

You know, UNIX actually evolved during these 30 years. Also, most "UNIX" exploits are actually application exploits (eg. SSH exploits, sudo exploits). The few that are kernel based are often specific to a particular kernel (linux exploits will not work on FreeBSD, FreeBSD kernel exploits will not work on NetBSD, NetBSD kernel exploits will not work on OpenBSD and so on and so forth)

The worst thing is not being unsafe, is thinking you're safe when you're not.

That applies to any OS, Mac OS classic included.