iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > Security Core Of Apple’s Update
Search:
[ insider_reports_insider ]

Security Core Of Apple’s Update



John Stith
Staff Writer
2006-03-02

SecurityProNews: Insider Reports Insider Reports RSS Feed


In response to recent holes pointed out in Apple's OS X operating system, the Cupertino kids released a security update patching some 20 holes. The update takes care of the problems from the concept codes as well other security problems.

Security Core of Apple's Update
Security Core of Apple's Update

The update addresses a number of issues in several different areas. Areas addressed include:

· apache_mod_php
· automount
· BOM
· Directory Services
· FileVault
· IPSec
· LibSystem
· Mail
· Perl
· Rsync
· Safari
· Safari, LaunchServices
· Syndication
· FileVault
· iChat.

The iChat problem was the one that started the heavily reported security flaws with OS X. An easily defendable concept code called Leap started the uproar. The Inqtana concept began making the rounds as well. While Inqtana and its variants are already completely moot, they did point out additional problems.

The Mail problem happens when an email attachment is double-clicked in Mail, Download Validation is used to warn the user if the file type if not "safe." There are techniques out there to disguise the file's type so that Download Validation is bypassed. The update allows Download Validation to look at the entire file.

Safari also had a number of problems to fix, the most significant of which was a proof of concept code for creating problems regarding the automatic download and execution of certain files.

The affected versions of OS X include v10.3.9 and OS X v10.4.5, both the OS X and the OS X server for both version. With all these updates in this release, it's crucial for Mac users to go on and get the update ASAP. Many of the biggest problems with Windows resulted from people not updating their software promptly. It's also a safe bet now that all these updates have been published, hackers will start pouring over the code, looking for holes with which to slip into people's computers.

Once again, this is proof that the Mac is not inherently safer, it just means hackers have left it alone. Now that the concepts are out there, that will change. Hackers will be getting right to work on different ways to hack it.

Get all the updates - click this link:

Add to | DiggThis| Yahoo My Web





About the Author:
John is a staff writer for SecurityProNews covering cyber security.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - $line) { echo $line ; } ?> All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds