Welcome to the MacNN Forums.

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

You are here: MacNN Forums > Search Forums > Search Results

Search: Posts Made By: alcatholic
Thread Thread Starter Last Post Replies Views Forum
OS X Security flaw Epilogoue: MS's Download.Ject, or what could have been 528 Views / 0 Replies  
In case anyone ever doubted the seriousness of the Launch Services flaw, and what could have been, here is a story from Slashdot on what seems to be a similiar attack scenario on Windows. And because...
Posted by alcatholic, on Jun 25, 2004 at 03:47 PM, in macOS
Re: Whad'ya think? 127,052 Views / 607 Replies  
Great post.

The loosening you propose between mounting and running is gentle and deep. It might be wise to increase the Mac's general security in the way you suggest. Especially considering a...
Posted by alcatholic, on May 26, 2004 at 10:52 PM, in macOS
Correct. The newer version of the app is... 127,052 Views / 607 Replies  
Correct. The newer version of the app is registered and when itms: needs iTunes, LaunchServices gives it the highest version # iTunes it's registered. Even with a PA type warning whose going to say,...
Posted by alcatholic, on May 26, 2004 at 03:39 PM, in macOS
Anyone else pickup that PA does not seem to... 127,052 Views / 607 Replies  
Anyone else pickup that PA does not seem to protect against the App Hijacking exploit?

Ironically, App Hijacking is a type of trojan horse,no? :hmm:
Posted by alcatholic, on May 26, 2004 at 01:06 PM, in macOS
I think the point is that you would be warned... 127,052 Views / 607 Replies  
I think the point is that you would be warned when a non-authenticated app was trying to load onto your computer.

This is sort of what smeger tried to do with PA, i.e. warn us that an app was...
Posted by alcatholic, on May 26, 2004 at 10:58 AM, in macOS
Hmm, that's very good. I never understood the... 127,052 Views / 607 Replies  
Hmm, that's very good. I never understood the certificates of the type:
"Do you trust Microsoft, Inc.?" I could never bring myself to trust the certificate. How do I know who made the certificate?
...
Posted by alcatholic, on May 26, 2004 at 10:49 AM, in macOS
Wow, this reminds me of the general solution... 127,052 Views / 607 Replies  
Wow, this reminds me of the general solution Peter de Silva spelled out in his open letter to Apple, http://scarydevil.com/~peter/io/osx-security.html


When I first posted de Silva's letter I...
Posted by alcatholic, on May 25, 2004 at 11:12 PM, in macOS
Thank you, smeger. Your dedication is awesome! I... 127,052 Views / 607 Replies  
Thank you, smeger. Your dedication is awesome! I totally admire your efforts at trying to intercept whenever LS registers an app. That is probably exactly what Apple should be doing for us.

One...
Posted by alcatholic, on May 25, 2004 at 10:48 PM, in macOS
You're right...and we need to prevent App... 127,052 Views / 607 Replies  
You're right...and we need to prevent App Hijacking!

So,

allowing auto-registration of url schemes allows the phantasy protocol exploit.

allowing auto-registration of creator codes allows...
Posted by alcatholic, on May 25, 2004 at 10:27 PM, in macOS
Agreed, but I would clarify OS X can continue to... 127,052 Views / 607 Replies  
Agreed, but I would clarify OS X can continue to register creator codes and everthing else upon viewing. It just should not register the URL schemes until launch. Would it be safe to allow official...
Posted by alcatholic, on May 25, 2004 at 07:39 PM, in macOS
And, if I may add to your point, URL's should not... 127,052 Views / 607 Replies  
And, if I may add to your point, URL's should not launch apps that are on mounted volumes, network folders, and the desktop. You can of course still launch apps located in those locations by using...
Posted by alcatholic, on May 25, 2004 at 12:07 PM, in macOS
You're right about the ftp. I'm just getting... 127,052 Views / 607 Replies  
You're right about the ftp. I'm just getting confused after three-four days of this....My whole argument might not have held water, but I'm too tired to figure it out right now. Tomorrow, maybe.
...
Posted by alcatholic, on May 24, 2004 at 09:11 PM, in macOS
If Peter de Silva's argument and my post above... 127,052 Views / 607 Replies  
If Peter de Silva's argument and my post above hold water, it may be enough for PA to tell us what application a URL will launch and where it is located. And then not allow an app from an untrusted...
Posted by alcatholic, on May 24, 2004 at 07:40 PM, in macOS
But what apps can you permanently trust with... 127,052 Views / 607 Replies  
But what apps can you permanently trust with untrusted data such as a URL?

Here is Peter de Silva's argument about this:
http://scarydevil.com/~peter/io/osx-security.html

My attempt to learn...
Posted by alcatholic, on May 24, 2004 at 06:54 PM, in macOS
Re: yet yet yet another 127,052 Views / 607 Replies  
Can someone translate?

It sounds like we just have to add ssh: to the blocked list of protocols for the same reason we needed to block telnet: and help: when their respective applications ran...
Posted by alcatholic, on May 24, 2004 at 05:20 PM, in macOS
There is a chance that no protocol is safe. ... 127,052 Views / 607 Replies  
There is a chance that no protocol is safe.

When Developer first brainstormed on what was the possible trouble caused by LaunchServices, he listed three possibilities, below are his words. The...
Posted by alcatholic, on May 24, 2004 at 03:46 AM, in macOS
Actually, Developer was the first to spell out... 127,052 Views / 607 Replies  
Actually, Developer was the first to spell out the possibility of "phantom" protocols after you brought LaunchServices into the mix. smeger was the first to demonstrate.
Here is Developer's very...
Posted by alcatholic, on May 22, 2004 at 06:54 AM, in macOS
Telnet exploit 127,052 Views / 607 Replies  
Telnet: protocol can also be used as an exploit. Haven't seen anymore info on the quicktime: exploit.

Here's the link:
Jay Allen's Blog...
Posted by alcatholic, on May 21, 2004 at 12:30 AM, in macOS
 
Top
Privacy Policy
All times are GMT -4. The time now is 07:25 AM.
All contents of these forums © 1995-2017 MacNN. All rights reserved.
Branding + Design: www.gesamtbild.com
vBulletin v.3.8.8 © 2000-2017, Jelsoft Enterprises Ltd.,