munkery
Mar 23, 04:20 PM
http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174
Much of the information in the PDF (http://www.macforensicslab.com/Malware_on_Mac_OS_X.pdf) associated with this article (http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174) is incorrect. For example:
Page 26
It refers to the bundle architecture as insecure. The argument presented would be true if security sensitive apps were not owned by system. Given that they are owned by system, malware cannot modify the bundle of an app owned by system without authentication when the app is run with user privileges in an admin or standard account.
For example, show package contents of iTunes, Safari, or Mail and try to create a folder in the bundle. In relation to the example in the article, try renaming iTunes. The argument in the article relies on actions that can not be completed in an OS X admin account; these type of changes are even more restricted in a standard account.
Apps not owned by system are vulnerable but without privilege escalation can not install rootkits or keyloggers. Even apps owned by system run with user privileges and require privilege escalation to install dangerous payloads.
Mac OS X does not prompt for authentication if you install apps in the proper location for that user account type. When installed in the proper location, apps are sandboxed from the system level of Mac OS X by the Unix DAC model used within Mac OS X.
Windows is less secure because most apps (Chrome only exception I can recall) install their associated files in levels of the system that require authentication regardless of user account type (unless Admin in Windows XP because running as superuser - no authentication required to install with elevated privileges - very dangerous). It is easier to trick Windows users to install a trojan with elevated privileges given that almost all apps ask for authentication to install and the user can not distinguish the intent of that authentication.
Page 30
The claim that the Application folder is unprotected is false. Security sensitive apps within the Application folder are owned by system.
Also, security sensitive system binaries are still stored in /bin and /sbin in Mac OS X.
Page 31
The ability to read the contacts stored in Address Book could be used by a worm to propagate. But, malware that uses this to spread is not likely to appear in the wild if the malware is not profitable. It is unlikely that malware will be profitable without being able to hook (this is a specific function) into apps owned by system.
Page 33
Starts off talking about trojans, trojans are easily avoided with user knowledge in Mac OS X because most apps do not require authentication to install if installed in the appropriate location where the Unix DAC model protects the system.
Viruses using the model shown in the article will not be successful without privilege escalation. This is the reason why Mac OS X malware is not successful in the wild.
By default, very few server side services are exposed in Mac OS X and those that are exposed are sandboxed. Vectors for worm propagation are limited to client side. Client side worms require authentication to install and spread if do not include privilege escalation via exploitation because of the Unix DAC model used in Mac OS X. Trojans used to trick users to authenticate are less likely to be successful in Mac OS X as stated above.
Much of the information in the PDF (http://www.macforensicslab.com/Malware_on_Mac_OS_X.pdf) associated with this article (http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174) is incorrect. For example:
Page 26
It refers to the bundle architecture as insecure. The argument presented would be true if security sensitive apps were not owned by system. Given that they are owned by system, malware cannot modify the bundle of an app owned by system without authentication when the app is run with user privileges in an admin or standard account.
For example, show package contents of iTunes, Safari, or Mail and try to create a folder in the bundle. In relation to the example in the article, try renaming iTunes. The argument in the article relies on actions that can not be completed in an OS X admin account; these type of changes are even more restricted in a standard account.
Apps not owned by system are vulnerable but without privilege escalation can not install rootkits or keyloggers. Even apps owned by system run with user privileges and require privilege escalation to install dangerous payloads.
Mac OS X does not prompt for authentication if you install apps in the proper location for that user account type. When installed in the proper location, apps are sandboxed from the system level of Mac OS X by the Unix DAC model used within Mac OS X.
Windows is less secure because most apps (Chrome only exception I can recall) install their associated files in levels of the system that require authentication regardless of user account type (unless Admin in Windows XP because running as superuser - no authentication required to install with elevated privileges - very dangerous). It is easier to trick Windows users to install a trojan with elevated privileges given that almost all apps ask for authentication to install and the user can not distinguish the intent of that authentication.
Page 30
The claim that the Application folder is unprotected is false. Security sensitive apps within the Application folder are owned by system.
Also, security sensitive system binaries are still stored in /bin and /sbin in Mac OS X.
Page 31
The ability to read the contacts stored in Address Book could be used by a worm to propagate. But, malware that uses this to spread is not likely to appear in the wild if the malware is not profitable. It is unlikely that malware will be profitable without being able to hook (this is a specific function) into apps owned by system.
Page 33
Starts off talking about trojans, trojans are easily avoided with user knowledge in Mac OS X because most apps do not require authentication to install if installed in the appropriate location where the Unix DAC model protects the system.
Viruses using the model shown in the article will not be successful without privilege escalation. This is the reason why Mac OS X malware is not successful in the wild.
By default, very few server side services are exposed in Mac OS X and those that are exposed are sandboxed. Vectors for worm propagation are limited to client side. Client side worms require authentication to install and spread if do not include privilege escalation via exploitation because of the Unix DAC model used in Mac OS X. Trojans used to trick users to authenticate are less likely to be successful in Mac OS X as stated above.
AppleScruff1
Apr 28, 05:40 PM
So is that extra $.77 billion Apple made going to make a whit of difference in the end? Both companies have more cash then they know what to do with. Frankly MSFT should be less university research and more single-minded focus on products like Apple.
But Microsoft has done more for the world than Apple by taking that approach.
But Microsoft has done more for the world than Apple by taking that approach.
iRobby
Apr 14, 12:01 PM
Does this mean I should hold off on getting a 27"iMac this year and wait for the 2012 Refresh instead of the 2011 Refresh? I assume the Sandy Bridge is going in the 2011 Refresh
aurichie
Apr 28, 05:51 PM
We've won everybody!!! :D :D :D :D :D We've really won!!!! :apple: :apple: :apple: :apple:
I'm going to crack open a bottle of champagne now and celebrate. :cool:
I'm going to crack open a bottle of champagne now and celebrate. :cool:
HangmanSwingset
Apr 11, 08:32 AM
ps3 metldr fiasco much?
At least Apple most likely has the sense to shrug it off most likely. If it were Sueny, they'd be pleading the judge for the IP addresses of anyone reading this article.
At least Apple most likely has the sense to shrug it off most likely. If it were Sueny, they'd be pleading the judge for the IP addresses of anyone reading this article.
kettle
Oct 28, 03:54 AM
Does Magna Carta mean nothing to you? Did she die in vain!
...sorry, couldn't resist.:)
you're quite welcome...
It'll be the fact that that is funny that keeps me in good spirits for the future.
"I'm not a fascist. I'm a priest. Fascists dress up in black and tell people what to do. Whereas priests... more drink?"
Father Ted
Hopefully, (and it's what I'm clinging to) it's 'these islands' (Churchill) that'll finally make them ask what they did it all for. I believe we are immune as a group of people (assimilated though we be) because we'll always laugh in the face of adversity. History tells us that even if 'they' invade us they soon escape (or join up) because 'we' (who aren't aspiring fascists or fascist fodder) are content to treat political occupation as if it were one big joke.
long may the Joke continue.
(anyone watched V for Vendetta yet?)
...sorry, couldn't resist.:)
you're quite welcome...
It'll be the fact that that is funny that keeps me in good spirits for the future.
"I'm not a fascist. I'm a priest. Fascists dress up in black and tell people what to do. Whereas priests... more drink?"
Father Ted
Hopefully, (and it's what I'm clinging to) it's 'these islands' (Churchill) that'll finally make them ask what they did it all for. I believe we are immune as a group of people (assimilated though we be) because we'll always laugh in the face of adversity. History tells us that even if 'they' invade us they soon escape (or join up) because 'we' (who aren't aspiring fascists or fascist fodder) are content to treat political occupation as if it were one big joke.
long may the Joke continue.
(anyone watched V for Vendetta yet?)
Multimedia
Sep 13, 10:18 AM
so, how does one go about getting the 1.2 update? It does not appear in my version of iTunes7Install Quicktime 7.1.3 (http://www.apple.com/quicktime/download/mac.html) then install iTunes 7 (http://www.apple.com/itunes/download/). Connect your 3-5G iPod. Updater will appear in the new iTunes when you highligh the iPod in the left column. Eazy Peezy. :)
Hey everybody Big News
NBC Today Show went High Definition today!
Hey everybody Big News
NBC Today Show went High Definition today!
Dustman
Apr 22, 11:21 AM
Woot Woot! Its a little sad though, about the SB IGP :(
As long as it doesnt shudder with the OS X animations and it plays 1080p smoothly, why does it matter? Do people really game on an Air?
As long as it doesnt shudder with the OS X animations and it plays 1080p smoothly, why does it matter? Do people really game on an Air?
Mattsasa
Apr 30, 06:46 PM
Well it's old but it still surpasses an awful lot of modern games. Plus the worlds are open, more beautiful and more demanding than all this Call of Duty stuff that's popular at the moment.
I agree, far better looking and beautiful, however not as cpu/gpu demanding
I agree, far better looking and beautiful, however not as cpu/gpu demanding
Ed A.
Apr 30, 05:01 PM
yes, new imac's will come, but sadly the will probably come without:
1- Matte screen option
2- USB 3
3- Blu-Ray
apple will just give consumers part of the options they want.
If they have a matte screen option for the new iMacs, I'll buy one. If not, then I'll hold out for some future update.
1- Matte screen option
2- USB 3
3- Blu-Ray
apple will just give consumers part of the options they want.
If they have a matte screen option for the new iMacs, I'll buy one. If not, then I'll hold out for some future update.
aristotle
Nov 13, 05:45 PM
You're missing the point. Yes, Apple, as the copyright holder, can define the extent of its license (assuming they haven't already waived the right to do so, which they may have, and assuming it isn't fair use, which it almost certainly is), and, yes, they can decide what goes into the app store, making the extent of the copyright license moot.
But it doesn't make sense for them to do so! Integration between iphone and mac would only sell more of each. They don't lose money on this sort of use of the icons - it's not like they offer a paid license for those images.
There is no duty to police copyrights to avoid losing them.
And, there is no rational alternative to using those icons (despite your repeated "all they had to do is create their own icons" argument) because Apple is likely to turn around and assert trademark/trade dress.
So all you can do is use words, or images unrelated to the appearance of the machines being represented. If the words say "Macbook Pro," e.g., APple can turn around and say you can't do THAT, either, because that's a trademark. If your handmade image looks too much like a mac, that's trademark infringement too (according to Apple). So you have to make it NOT look like the thing it represents. That totally defeats the POINT of the images in this use.
It's like having to write an article in a newspaper reviewing a concert without mentioning the name of the band or the names of any of the band members.
And Apple is doing it for absolutely no good reason.
I'm not missing the point. You are. They have a right to determine how their trademarks are to be used and if they did not vigourously defend them, you would see MSFT stealing even icons from OS X.
Apple is a company with a responsibility to shareholders. They are not your friends. Google is not your friend either.
The purpose of the image use is on a mac. You are also not looking at it from Apple's point of view that Apple wants to have the iPhone be a success regardless of whether the server used in a client server environment is running OS X, linux, some other unix or windows. If they were to allow some of their third party developer running OS X based services use their icons, the real client server developers running in the cloud would complain about favouritism. They have to keep third party developers under the same rules regardless of whether the app uses a mac based service or not.
But it doesn't make sense for them to do so! Integration between iphone and mac would only sell more of each. They don't lose money on this sort of use of the icons - it's not like they offer a paid license for those images.
There is no duty to police copyrights to avoid losing them.
And, there is no rational alternative to using those icons (despite your repeated "all they had to do is create their own icons" argument) because Apple is likely to turn around and assert trademark/trade dress.
So all you can do is use words, or images unrelated to the appearance of the machines being represented. If the words say "Macbook Pro," e.g., APple can turn around and say you can't do THAT, either, because that's a trademark. If your handmade image looks too much like a mac, that's trademark infringement too (according to Apple). So you have to make it NOT look like the thing it represents. That totally defeats the POINT of the images in this use.
It's like having to write an article in a newspaper reviewing a concert without mentioning the name of the band or the names of any of the band members.
And Apple is doing it for absolutely no good reason.
I'm not missing the point. You are. They have a right to determine how their trademarks are to be used and if they did not vigourously defend them, you would see MSFT stealing even icons from OS X.
Apple is a company with a responsibility to shareholders. They are not your friends. Google is not your friend either.
The purpose of the image use is on a mac. You are also not looking at it from Apple's point of view that Apple wants to have the iPhone be a success regardless of whether the server used in a client server environment is running OS X, linux, some other unix or windows. If they were to allow some of their third party developer running OS X based services use their icons, the real client server developers running in the cloud would complain about favouritism. They have to keep third party developers under the same rules regardless of whether the app uses a mac based service or not.
roadbloc
Mar 29, 11:21 AM
The Nokia/Microsoft partnership will guarantee this. It is no joke. I'm already seeing them rise in popularity, plenty shops sell them now.
And just for them who say Windows Phones are rubbish, they aren't. They are pretty damn good, although I do prefer my iPhone.
And just for them who say Windows Phones are rubbish, they aren't. They are pretty damn good, although I do prefer my iPhone.
enklined
Mar 23, 05:34 PM
Isn't it possible that the heads up provided up this app (and friends, newspapers, etc) may make people who know they will be drinking later in the evening re-think their mode of transportation? Could be saving a life or two.
Eh not really. If you've been drinking. Don't drive. Not a difficult dilemma to solve. No technology required to solve it.
And if you are planning to go out and get hammered, take a taxi.
I agree, no one could argue against that. However, for the guy who thinks he may be sober enough to drive: he checks his phone and gets discouraged by the local check points and decides to hail a cab.
Seems like a very decent possibility of this happening. Could save a life, or many. For that alone, the app shouldn't be pulled.
Eh not really. If you've been drinking. Don't drive. Not a difficult dilemma to solve. No technology required to solve it.
And if you are planning to go out and get hammered, take a taxi.
I agree, no one could argue against that. However, for the guy who thinks he may be sober enough to drive: he checks his phone and gets discouraged by the local check points and decides to hail a cab.
Seems like a very decent possibility of this happening. Could save a life, or many. For that alone, the app shouldn't be pulled.
BigPrince
Apr 20, 11:22 AM
Over in the UK not remembering passwords can sometimes land you in prison. Just remove the incriminating files frequently and regularly.
In the US you have the right to not self incriminate...they can make you turn over a physical key to a safe but since a password is not physical and in your head they can't compel you to turn it over....its considered testifying against yourself...a few court cases have faced this issue.
In the US you have the right to not self incriminate...they can make you turn over a physical key to a safe but since a password is not physical and in your head they can't compel you to turn it over....its considered testifying against yourself...a few court cases have faced this issue.
iMacZealot
Sep 17, 08:29 PM
And there are several ways to dial abroad using a US carrier.
Cingular (GSM) is $1.29/min in Europe. (About .68 pounds in the UK)
Verizon (CDMA) has dual CDMA/GSM phones that are $1.49 in Europe. (about .79 pounds.)
Sprint (CDMA) also has some dual CDMA/GSM phones that are also $1.49 a minut in Europe.
Although the best deal is with T-Mobile (GSM)> $.99 in Europe. (Or .52 pounds)
So we, too, have international choices.
Cingular (GSM) is $1.29/min in Europe. (About .68 pounds in the UK)
Verizon (CDMA) has dual CDMA/GSM phones that are $1.49 in Europe. (about .79 pounds.)
Sprint (CDMA) also has some dual CDMA/GSM phones that are also $1.49 a minut in Europe.
Although the best deal is with T-Mobile (GSM)> $.99 in Europe. (Or .52 pounds)
So we, too, have international choices.
zekegri
Mar 23, 05:18 PM
If I am sober enough to go through the process and find out where the checkpoints are then I should be able to use the software.
kurtsayin
Oct 12, 12:52 PM
I would love to have a red iPod, but I don't know why we would ever give money to help fight AIDS on a continent where the people take NO precautions to prevent themselves from getting AIDS... I mean, sure many children are born with it in Africa, but for soooo many adults, they could prevent the spread if they would just be monogamous.
So there, I solved AIDS for free, no Oprah, no Bono, no Ipods. Just have sex only within a lifetime committed relationship and AIDS is all but gone in one generation!
I'll stick to my black aluminum iPod nano, anyhow. I just hope 10% of the proceeds didn't go to research finding cures for the black plague... or frostbite...
So there, I solved AIDS for free, no Oprah, no Bono, no Ipods. Just have sex only within a lifetime committed relationship and AIDS is all but gone in one generation!
I'll stick to my black aluminum iPod nano, anyhow. I just hope 10% of the proceeds didn't go to research finding cures for the black plague... or frostbite...
manu chao
Sep 10, 05:25 PM
I have to conclude that people who want to use their 10 year old CRT are just incredibly cheap and don't value their screens as much as being able to claim how fast their CPU is.
Maybe, with the current pace at which CPUs are improving, I would want to upgrade my CPU every 18 months but my screen only every 36 months?
Maybe, with the current pace at which CPUs are improving, I would want to upgrade my CPU every 18 months but my screen only every 36 months?
skwert
Sep 13, 09:06 PM
Not what i was looking for
I wanted a smart phone wheres the keyboard ?
i can buy an itunes phone right now from cingular but i dont want one
what makes them think i will buy one now because its from apple and not motorola
their amazing design and interface...the reason why people buy all their other stuff. not to mention the sexy idea of ichat mobile
I wanted a smart phone wheres the keyboard ?
i can buy an itunes phone right now from cingular but i dont want one
what makes them think i will buy one now because its from apple and not motorola
their amazing design and interface...the reason why people buy all their other stuff. not to mention the sexy idea of ichat mobile
louis Fashion
Apr 28, 03:18 PM
Anyone looked at Mr. Softy's stock price? What a dog.
dondark
Sep 13, 11:26 PM
I hope the iPhone can be use iChat and we can video chat with and Mac at any time.
rhett7660
Nov 13, 05:12 PM
the tide is turning against Apple here, they need to clean up their act and get this whole thing working better.
i understand the walled-garden approach and respect that, but they also need to get the store cleaned up/organized and they need to work better with developers - which might just mean hiring more people to work with them on a daily basis.
You really think so? Three programs between these two development teams. Facebook and then these two. Yeah I see a huge tide turning right now. Please.
And the paid app didn't even sell that well.
i understand the walled-garden approach and respect that, but they also need to get the store cleaned up/organized and they need to work better with developers - which might just mean hiring more people to work with them on a daily basis.
You really think so? Three programs between these two development teams. Facebook and then these two. Yeah I see a huge tide turning right now. Please.
And the paid app didn't even sell that well.
Adidas Addict
Apr 22, 12:03 PM
then why did apple cripple the 13" macbook pro's with ****** resolution then?
I'd take the 13" MBP screen over the 13 MBA screen every day of the week, much better quality in every way apart from the small resolution increase. The MBA screen is cheap and nasty (yes I owned both, sold the 2010 Air to buy the 2011 13 MBP)
I'd take the 13" MBP screen over the 13 MBA screen every day of the week, much better quality in every way apart from the small resolution increase. The MBA screen is cheap and nasty (yes I owned both, sold the 2010 Air to buy the 2011 13 MBP)
spicyapple
Sep 4, 03:12 PM
One more thing... iPod video projector!!! :)