How to fix this error?

Yup, wont update to Ventura. But if they implemented code properly like on Final Cut or Logic those errors shouldn’t be happening, at least 1 time out of every 2-3 updates.

Indirectly macOS is safer because it’s less targeted, thats a fact. That has to do with Window’s market share but also with how hard it is to penetrate macOS.

Gatekeeper is part of XProtect as I mentioned.

You’re right that power users probably don’t need anti-virus because they know what they’re doing and macOS protects you enough right out of the box.

It’s true that the installed OS almost cannot be compromised, but user’s personal files can be if they’re dumb. macOS has a good permission system but malicious software gets access by people that just click accept on everything. And we know a lot of people do that because look at how many people here struggle with the Safari Web Push API.

I personally installed anti-virus on my siblings laptops after one of them got a adware/virus. Because they are in that ‘download everything and don’t look back’ group.

I’d argue that anti-virus is something for non power-users inside businesses etc. where it’s about protecting more than your own computer. Or it’s for people not handy with computers. AVG isn’t also the way to go but it was more about people not considering why people use anti-virus and just screaming in the comments to stop using it without gathering other info from OP.

Xprotect is basic. Doesn’t cover much adware and the likes.

And yet MacOS still gets viruses… wow. Who would have thought? Something from Apple doesn’t work 100% of the time. A real shock.

I had to do it to McAfee

Do you really think that people who try to run 2 antivirus software on top of each other can distinguish between a valid application download and one that contains a virus?

Then I perfectly agree. As always the user is the one that should be cautious, taking periodic snapshots or backups. And as you pointed out, due to how file permissions work he is directly responsible for his personal files, in his home folder.

Obviously anti-viruses are a must for enterprises, but also other powerful features like MDMs are important, so that the user is limited to what is required to do with the computer.

The best antivirus for a Mac is the user, I’ve been Mac user since 2009 and never caught any virus, and adware is usually installed by the users themselves. XProtect is not that basic, here’s how it works: Protecting against malware in macOS – Apple Support (UK)

Did you ever use a Mac before? :joy:

No, which is why these hypothetical people try to run two anti-virus programs on top of each other in the first place. In this case, the anti-virus programs themselves often cause more issues than they solve, so that remains a reason why both should be removed.

What’s a reasonable use case for anti-virus software on Mac, for any level of user?

Good for you, but you’re not the average user. Tell me you’ve not worked in IT without telling me you’ve not worked in IT.

I troubleshoot them. They’re just glorified Linux at the end of the day. Fanboy elsewhere.

To stop viruses… What else?

If you still believe that there are no viruses for mac, you are about 10 years behind on the marketing talks. While still not so common as Windows, there are plenty of viruses out there for MacOS or even iOS.

The only benefit Mac still has is the wide spread usage of the app store, but this safety net is also completely useless if a user downloads a .pkg or a .dmg from a different site. And again, my initial point, the average end user can not distinguish between a valid download, and a compromised download. Gatekeeper will also not stop most users of just clicking “allow” without considering the possible consequences.

You know so little about strangers that is embarrassing :joy:

Then I’m sorry for your company that pays for an incompetent like you :joy::man_shrugging:t2: “They are just glorified Linux” is the dumbest thing I’ve heard in my whole career as IT engineer, only because Linux and Macs don’t really resemble Windows doesn’t mean that they are a copy of each other. You are an average Windows user that knows very little about anything else.

And how many viruses does a modern anti virus detect? If you’re lucky it’s 20%.

Antivirus software creates a false sense of security („oh [software I pay 60 bucks per year for] didn’t complain so this sketchy .dmg file is probably fine“). That’s it.

And even if it detects a virus, most tech illiterate people will force the antivirus to restore the file and run it anyways.

Anyone who advocates for AV on Mac doesn’t understand the state of the built in defenses that macOS has built in.

  1. Xprotect: A master list, maintained and updated by Apple of known malware. Any app binary listed in the Xprotect schema is blocked from running in any way.
  2. MRT: The Malware Removal Tool is a process that runs on each start up and removes known malware (that hasn’t been elevated to the Xprotect level) from the various, known locations that malware gets installed to.
  3. Gatekeeper: By default it blocks applications from running that are not from the App Store or an identified developer, with the option to block anything from outside of the App Store.
  4. Signed System Volume: The storage on a Macintosh drive is “partitioned” such that the operating system and associated libraries are on a read only volume. This volume is cryptographically signed by Apple, and can only be updated by a macOS updater which can read the signature, unlock the volume, make changes, the re-seals the volume.
  5. Boot from a system snapshot: As an added layer of security, on startup the operating system creates a snapshot of the signed system volume, the launches the OS that is presented to the user from the snapshot. It then loads the data volume with all of the associated user folders, applications, etc.
  6. Other miscellaneous controls: Kernel extensions (kext) have largely been deprecated and requires that a user reboot into recovery and enable allowing third party extensions (with plenty of warnings along the way). Applications that install without admin password, are only accessible within the user environment and can be removed simply by deleting the application from the ~/Applications/ folder. All web browser extensions have been moved to the App Store or require a corresponding dedicated full application that provides the browser extensions. App Store signatures can be pulled by Apple for abuse or distribution of malware.

The controls Apple has put in place are quite sophisticated. The big difference is that Apple doesn’t have a GUI presenting all of this to the user. Running AV on a Mac largely takes up system resources and degrades the user experience, all while providing a false sense of additional security.

So, when I say you shouldn’t use antivirus software on a Mac, I say from a technical knowledge perspective. It’s not about “Macs don’t get viruses, duh”. And, I have run my Macs for the last 20 years without AV, without any incident ever.

Man, there’s no point arguing with these people, they’re the same people who applaud Apple for taking their freedoms away for a false sense of security (app permissions) instead of implementing proper AV software into MacOS like Windows and most OEM Android skins have (typically buried in settings but at least it’s there)

I agree with you. Most of these folks just parrot what they hear. They have the slightest info on the latest threats.

Trusting manufacturer AV to perfectly protect the average user tells me all I need to know.

Average user is not the brightest individual and is the biggest threat to my networks.