munkery
Mar 23, 04:20 PM
http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174
Much of the information in the PDF (http://www.macforensicslab.com/Malware_on_Mac_OS_X.pdf) associated with this article (http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174) is incorrect. For example:
Page 26
It refers to the bundle architecture as insecure. The argument presented would be true if security sensitive apps were not owned by system. Given that they are owned by system, malware cannot modify the bundle of an app owned by system without authentication when the app is run with user privileges in an admin or standard account.
For example, show package contents of iTunes, Safari, or Mail and try to create a folder in the bundle. In relation to the example in the article, try renaming iTunes. The argument in the article relies on actions that can not be completed in an OS X admin account; these type of changes are even more restricted in a standard account.
Apps not owned by system are vulnerable but without privilege escalation can not install rootkits or keyloggers. Even apps owned by system run with user privileges and require privilege escalation to install dangerous payloads.
Mac OS X does not prompt for authentication if you install apps in the proper location for that user account type. When installed in the proper location, apps are sandboxed from the system level of Mac OS X by the Unix DAC model used within Mac OS X.
Windows is less secure because most apps (Chrome only exception I can recall) install their associated files in levels of the system that require authentication regardless of user account type (unless Admin in Windows XP because running as superuser - no authentication required to install with elevated privileges - very dangerous). It is easier to trick Windows users to install a trojan with elevated privileges given that almost all apps ask for authentication to install and the user can not distinguish the intent of that authentication.
Page 30
The claim that the Application folder is unprotected is false. Security sensitive apps within the Application folder are owned by system.
Also, security sensitive system binaries are still stored in /bin and /sbin in Mac OS X.
Page 31
The ability to read the contacts stored in Address Book could be used by a worm to propagate. But, malware that uses this to spread is not likely to appear in the wild if the malware is not profitable. It is unlikely that malware will be profitable without being able to hook (this is a specific function) into apps owned by system.
Page 33
Starts off talking about trojans, trojans are easily avoided with user knowledge in Mac OS X because most apps do not require authentication to install if installed in the appropriate location where the Unix DAC model protects the system.
Viruses using the model shown in the article will not be successful without privilege escalation. This is the reason why Mac OS X malware is not successful in the wild.
By default, very few server side services are exposed in Mac OS X and those that are exposed are sandboxed. Vectors for worm propagation are limited to client side. Client side worms require authentication to install and spread if do not include privilege escalation via exploitation because of the Unix DAC model used in Mac OS X. Trojans used to trick users to authenticate are less likely to be successful in Mac OS X as stated above.
Much of the information in the PDF (http://www.macforensicslab.com/Malware_on_Mac_OS_X.pdf) associated with this article (http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174) is incorrect. For example:
Page 26
It refers to the bundle architecture as insecure. The argument presented would be true if security sensitive apps were not owned by system. Given that they are owned by system, malware cannot modify the bundle of an app owned by system without authentication when the app is run with user privileges in an admin or standard account.
For example, show package contents of iTunes, Safari, or Mail and try to create a folder in the bundle. In relation to the example in the article, try renaming iTunes. The argument in the article relies on actions that can not be completed in an OS X admin account; these type of changes are even more restricted in a standard account.
Apps not owned by system are vulnerable but without privilege escalation can not install rootkits or keyloggers. Even apps owned by system run with user privileges and require privilege escalation to install dangerous payloads.
Mac OS X does not prompt for authentication if you install apps in the proper location for that user account type. When installed in the proper location, apps are sandboxed from the system level of Mac OS X by the Unix DAC model used within Mac OS X.
Windows is less secure because most apps (Chrome only exception I can recall) install their associated files in levels of the system that require authentication regardless of user account type (unless Admin in Windows XP because running as superuser - no authentication required to install with elevated privileges - very dangerous). It is easier to trick Windows users to install a trojan with elevated privileges given that almost all apps ask for authentication to install and the user can not distinguish the intent of that authentication.
Page 30
The claim that the Application folder is unprotected is false. Security sensitive apps within the Application folder are owned by system.
Also, security sensitive system binaries are still stored in /bin and /sbin in Mac OS X.
Page 31
The ability to read the contacts stored in Address Book could be used by a worm to propagate. But, malware that uses this to spread is not likely to appear in the wild if the malware is not profitable. It is unlikely that malware will be profitable without being able to hook (this is a specific function) into apps owned by system.
Page 33
Starts off talking about trojans, trojans are easily avoided with user knowledge in Mac OS X because most apps do not require authentication to install if installed in the appropriate location where the Unix DAC model protects the system.
Viruses using the model shown in the article will not be successful without privilege escalation. This is the reason why Mac OS X malware is not successful in the wild.
By default, very few server side services are exposed in Mac OS X and those that are exposed are sandboxed. Vectors for worm propagation are limited to client side. Client side worms require authentication to install and spread if do not include privilege escalation via exploitation because of the Unix DAC model used in Mac OS X. Trojans used to trick users to authenticate are less likely to be successful in Mac OS X as stated above.
fishcove
May 3, 10:25 AM
Who has room for two external displays on a desk that already has a 27" iMac?! Dual outs on the MBP would make much more sense, although achieving it may be more of a technical challenge in terms of GPU power.
I'm thinking of a 3-monitor gaming/sim setup. No desk - think cockpit.
I'm thinking of a 3-monitor gaming/sim setup. No desk - think cockpit.
Funkymonk
Apr 19, 10:45 AM
as much as others "stole" from apple I bet apple "stole" just as much from other companies. funny how macrumors failed to mention that samsung may be counter suing because apple might have used some samsung tech without asking as well.
oh well life goes on. None of theses multi BILLION dollar companies have any soul, they are just cold, calculating, heartless businesses. And for all the apple fanatics here, yes that INCLUDES apple. :o
oh well life goes on. None of theses multi BILLION dollar companies have any soul, they are just cold, calculating, heartless businesses. And for all the apple fanatics here, yes that INCLUDES apple. :o
ccrandall77
Sep 26, 10:48 AM
Cingular is by far the worst cell carrier in terms of customer service and I will never go back to them (nor will they have me back, I suspect). If true, it's too bad Apple decided to go this route instead of just providing a selection of phone types like Palm with the Treo. With the Treo, you can get a Sprint, Verizon, Cingular or unlocked phone so everyone who wants one can have it.
The worst part about this being for Cingular is that they will NEVER let you unlock the phone and who knows if Apple will do it for you (I HIGHLY doubt it). I tried and they gave me the run around about not unlocking the phone because it could allow malware from other phone networks to get on their phones. That's a load of BS.
This really stinks since I'm tired of having a huge Treo, eventhough it's a great phone, and smaller phones just don't have the features. I was hoping that Apple's offering would be the perfect compromise. I guess instead of getting our underware in a bundle, we might as well sit back and wait until the iPhone is release... if it's ever released.
The worst part about this being for Cingular is that they will NEVER let you unlock the phone and who knows if Apple will do it for you (I HIGHLY doubt it). I tried and they gave me the run around about not unlocking the phone because it could allow malware from other phone networks to get on their phones. That's a load of BS.
This really stinks since I'm tired of having a huge Treo, eventhough it's a great phone, and smaller phones just don't have the features. I was hoping that Apple's offering would be the perfect compromise. I guess instead of getting our underware in a bundle, we might as well sit back and wait until the iPhone is release... if it's ever released.
HiRez
Sep 19, 10:48 PM
Considering that they sold "010101010's", I think an extra $50M is extraordinary. Apple ripped 75 DVDs, made a few web pages and boom... $1M in 7 days! I don't know what you're talking about... you're thinking small... $50M/YR is JUST THE BEGINNING.I agree, consider that the Disney's cut of the $50 million is almost pure profit for them (very little overhead). They don't even have to pay bandwidth and infrastructure costs out of that, Apple does. More available movies and more people using the service can only mean bigger numbers. I've got some major issues with Apple's movie download service, and for now I won't be using it, but nonetheless I think the numbers will be even larger than Disney is projecting.
If somebody tells you "I'm going to start sending you some extra cash every month, you don't need to do anything to get it, just cash the checks", are you going to complain whether the amount is $50 million or $500 million?
If somebody tells you "I'm going to start sending you some extra cash every month, you don't need to do anything to get it, just cash the checks", are you going to complain whether the amount is $50 million or $500 million?
johnnyrb
Apr 20, 10:12 AM
I doubt the information is accurate.
Update: The information is inaccurate.
Update: The information is inaccurate.
muncyweb
Mar 23, 06:31 PM
Gotta keep the revenue flowing ya know..
De facto U.S. Senators asked Apple? Who are the servants in this scenario? Who is the injured party? Punishing one for the irresponsibility of another, tis the American way.
NOT.
Participate in lawful governments like the NCAR (ncrepublic.org (http://www.ncrepublic.org))
De facto U.S. Senators asked Apple? Who are the servants in this scenario? Who is the injured party? Punishing one for the irresponsibility of another, tis the American way.
NOT.
Participate in lawful governments like the NCAR (ncrepublic.org (http://www.ncrepublic.org))
Bubbasteve
Sep 26, 08:26 AM
I wonder when it will be released? I really hope Apple sells them in there stores and I don't have to go through cingular and get it...but whatever I must do what I must do
bousozoku
Aug 23, 06:02 PM
I hope this eventually leads to Sound Blaster support for macs.
I hope not. We've been down that...well, it wasn't even a road...it was a road construction project.
Creative created a Fourpoint card, priced it like the DD5.1 card, and didn't work on the drivers past the initial release at a time when Mac OS X was becoming important, so it was never Mac OS X-compatible or reasonably good.
As far as the patent debates went, the filing system and visual access were patents that seemed all too generic.
I hope not. We've been down that...well, it wasn't even a road...it was a road construction project.
Creative created a Fourpoint card, priced it like the DD5.1 card, and didn't work on the drivers past the initial release at a time when Mac OS X was becoming important, so it was never Mac OS X-compatible or reasonably good.
As far as the patent debates went, the filing system and visual access were patents that seemed all too generic.
Ugg
Sep 19, 06:30 PM
I think the big problem with rentals is that Netflix has it wrapped up right now. You can get a ton of movies for a monthly fee, and I don't see any way an online service can compete with that, at least not without losing money on it.
If you know your best effort won't compare well to Netflix, does it really make sense to try and do it anyway? Or is it smarter just to stay out of such a cutthroat marketplace?
Netflix is great, but it's not ideal. They offer too few foreign movies. The wait times for new releases can be phenomenal and some movies that they should be stocking, they aren't.
The only real future for online movies is by renting them. I'd pay up to $3 per rental but have no desire to keep a movie. If I want to watch it again, I'll rent it again.
If you know your best effort won't compare well to Netflix, does it really make sense to try and do it anyway? Or is it smarter just to stay out of such a cutthroat marketplace?
Netflix is great, but it's not ideal. They offer too few foreign movies. The wait times for new releases can be phenomenal and some movies that they should be stocking, they aren't.
The only real future for online movies is by renting them. I'd pay up to $3 per rental but have no desire to keep a movie. If I want to watch it again, I'll rent it again.
thisisahughes
Apr 20, 10:13 AM
Should be studying in law school instead of engineering. No innovative products but loads of cash to be made:D Lawsuits everywhere.
lol. kudos.
lol. kudos.
Freg3000
Aug 23, 04:57 PM
What I find most interesting is that fact the Creative is joining the Made for iPod program and will be producing its own iPod accessories.
iJawn108
Oct 12, 08:25 PM
They should have come out with red Core 2 Duo MacBook Pros, now those would be hot items.:p
GFLPraxis
Aug 28, 12:30 PM
Please give us an Intel iMac tomorrow...:D
School starts on the 20th, I want that iMac!
School starts on the 20th, I want that iMac!
robeddie
Apr 25, 02:17 PM
YESSSS after 3 years of waiting!
It's been 2 years 6 months. The aluminum design prior to that lasted 5 years 10 months (with only a minor thinning when it became the macpro).
Since when did two and a half years become a long time to keep a particular design? And how did some of us get so impatient in our consumer-based lives?
It's been 2 years 6 months. The aluminum design prior to that lasted 5 years 10 months (with only a minor thinning when it became the macpro).
Since when did two and a half years become a long time to keep a particular design? And how did some of us get so impatient in our consumer-based lives?
eNcrypTioN
Feb 24, 10:06 AM
People still use McAfee lol... :eek: Apple is smart, I doubt anything bad will come of this.
BenRoethig
Sep 1, 11:40 AM
wow. would that be the biggest mainstream desktop around?
Biggest, yes. Mainstream, not even close.
Biggest, yes. Mainstream, not even close.
iJohnHenry
Apr 10, 07:20 PM
I think they also have some ridiculous maternity leave like 16 months for BOTH PARENTS, shared somehow. I must say, that is a nice way to do it.
Ridiculous? Not quite, from the parent's perspective.
In Canada we have 12 months maternity leave, which can be taken by either spouse, or split, 6 months/6 months.
Where the F is THAT???
We would call that absence of traffic.
Ridiculous? Not quite, from the parent's perspective.
In Canada we have 12 months maternity leave, which can be taken by either spouse, or split, 6 months/6 months.
Where the F is THAT???
We would call that absence of traffic.
Silentwave
Jul 15, 04:28 PM
I know that it is a desktop chip but I would expect that a site like anandtech or tomshardware would check againt the core duo just to see how much the difference is between the two "core" CPU.
Why?
Mobile vs. desktop
32 bit vs. 64 bit
Pentium M architecture vs. Intel Core microarchitecture (yes, Yonah uses the latest version of the pentium M architecture, far more efficient than netburst)
and I doubt very much they have comparable Mobos/ machines to test them on.
Why?
Mobile vs. desktop
32 bit vs. 64 bit
Pentium M architecture vs. Intel Core microarchitecture (yes, Yonah uses the latest version of the pentium M architecture, far more efficient than netburst)
and I doubt very much they have comparable Mobos/ machines to test them on.
sammyman
May 3, 02:52 PM
"Macworld has confirmation from Apple that the new iMacs will support Target Display Mode but only when the device they are connected to is also a Thunderbolt equipped Mac."
Is that true?
But hooking it up to 2 apple cinemas (24") is ok, right?
Is that true?
But hooking it up to 2 apple cinemas (24") is ok, right?
nagromme
Oct 12, 02:48 PM
I would love to have a red iPod, but I don't know why we would ever give money to help fight AIDS on a continent where the people take NO precautions to prevent themselves from getting AIDS...
Pretending that your trolling is real:
Money to fight AIDS includes educational efforts so people WILL take precautions.
Just like the educational efforts we have here in the US, where people are not lifetime monogamous :)
PS, "we" wouldn't be giving the money, Apple would. "We" would just get a new color iPod :)
There are many wonderful things about the African people, but there were also many wonderful things about the Dinosaurs, the Dodo bird, and numerous others.
I assume you're not really equating natural selection and genetic evolution, with cultural factors like education.
Because they're actually not the same thing, nor do they work the same.
For instance, here's an interesting fact: dying is necessary for natural selection to work. Dying is NOT necessary for education to work.
So you see, there's an option that involves less dying and suffering. That's what you may be overlooking in your zeal :)
By your logic, why help anyone, when letting them die will make people "smarter and wiser?" Why, children who get hurt on skateboards and behind the wheel should be turned away from hospitals. We would create a super race worthy of the 3rd Reich :o
(Need I mention that much of mathematics, astronomy, and science came from "rudimentary" and "archaic" African scientists who were far ahead of their European counterparts? I'm guessing whatever you have been reading may have omitted some parts of history :) )
Pretending that your trolling is real:
Money to fight AIDS includes educational efforts so people WILL take precautions.
Just like the educational efforts we have here in the US, where people are not lifetime monogamous :)
PS, "we" wouldn't be giving the money, Apple would. "We" would just get a new color iPod :)
There are many wonderful things about the African people, but there were also many wonderful things about the Dinosaurs, the Dodo bird, and numerous others.
I assume you're not really equating natural selection and genetic evolution, with cultural factors like education.
Because they're actually not the same thing, nor do they work the same.
For instance, here's an interesting fact: dying is necessary for natural selection to work. Dying is NOT necessary for education to work.
So you see, there's an option that involves less dying and suffering. That's what you may be overlooking in your zeal :)
By your logic, why help anyone, when letting them die will make people "smarter and wiser?" Why, children who get hurt on skateboards and behind the wheel should be turned away from hospitals. We would create a super race worthy of the 3rd Reich :o
(Need I mention that much of mathematics, astronomy, and science came from "rudimentary" and "archaic" African scientists who were far ahead of their European counterparts? I'm guessing whatever you have been reading may have omitted some parts of history :) )
kiljoy616
Apr 4, 12:31 PM
I've never seen a mall security guard carrying a gun.
He was there to get the last ipad 2 ;) how dare anyone rob an Apple (cult) store. That will teach anyone else, rob a bank no problem, rob an Apple store and we will hang you with an imac power cord. :rolleyes:
He was there to get the last ipad 2 ;) how dare anyone rob an Apple (cult) store. That will teach anyone else, rob a bank no problem, rob an Apple store and we will hang you with an imac power cord. :rolleyes:
satcomer
Mar 23, 06:55 PM
To me smells of political double cross. These "Senators" are all up for Election in 2012 and don't want to be tried to the alleged ailing of the current Presidential term. So they are trying to win votes of the "mothers" of America that they can talk up on TV (think political adds). They want people to think they are tough on crime, etc and not talk about their voting records.
Note: After seeing so many Presidential elections I am convinced a person is elected or re-elected based on the current economy. People vote on who they think will help boost the economy. Plus who ever is elected the opposite Political Party will have large gains in the "off year" elections. It happens all the time. :eek:
Note: After seeing so many Presidential elections I am convinced a person is elected or re-elected based on the current economy. People vote on who they think will help boost the economy. Plus who ever is elected the opposite Political Party will have large gains in the "off year" elections. It happens all the time. :eek:
newagemac
Apr 11, 07:23 AM
Care to actually show me what app that will actually do what I was talking about? :rolleyes:
I want to play music from iTunes on my Mac as the source, and multiple airplay devices as the target. Currently I can only play to Airport Expresses and Apple TVs (and upcoming Airplay certified speakers). I want Apple to include all iOS devices to that list of target devices.
Check out the Airframe and Airview apps in the App Store. They do what you want but unlike the Apple TV and Airport Express, you have to have the app open for the device to be recognized as an Airplay target device. Airview is free and Airframe costs a couple of bucks but it supports tv out which Airview does not. Neither support DRM content though.
But instead of using those apps, Apple already provides a solution in iOS 4.3 with iOS Home Sharing. It makes more sense in my opinion that way anyway. If you want to listen to music on computer with your mobile device it's usually because you have it in your hands which means a "pull" type solution like Home Sharing would be beneficial. A "push" type solution doesn't really make much sense unless you have your mobile device connected to a TV or some speakers. But then that's what the Apple TV and Airport Express are for.
I want to play music from iTunes on my Mac as the source, and multiple airplay devices as the target. Currently I can only play to Airport Expresses and Apple TVs (and upcoming Airplay certified speakers). I want Apple to include all iOS devices to that list of target devices.
Check out the Airframe and Airview apps in the App Store. They do what you want but unlike the Apple TV and Airport Express, you have to have the app open for the device to be recognized as an Airplay target device. Airview is free and Airframe costs a couple of bucks but it supports tv out which Airview does not. Neither support DRM content though.
But instead of using those apps, Apple already provides a solution in iOS 4.3 with iOS Home Sharing. It makes more sense in my opinion that way anyway. If you want to listen to music on computer with your mobile device it's usually because you have it in your hands which means a "pull" type solution like Home Sharing would be beneficial. A "push" type solution doesn't really make much sense unless you have your mobile device connected to a TV or some speakers. But then that's what the Apple TV and Airport Express are for.
No comments:
Post a Comment