munkery
Mar 23, 04:20 PM
http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174
Much of the information in the PDF (http://www.macforensicslab.com/Malware_on_Mac_OS_X.pdf) associated with this article (http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174) is incorrect. For example:
Page 26
It refers to the bundle architecture as insecure. The argument presented would be true if security sensitive apps were not owned by system. Given that they are owned by system, malware cannot modify the bundle of an app owned by system without authentication when the app is run with user privileges in an admin or standard account.
For example, show package contents of iTunes, Safari, or Mail and try to create a folder in the bundle. In relation to the example in the article, try renaming iTunes. The argument in the article relies on actions that can not be completed in an OS X admin account; these type of changes are even more restricted in a standard account.
Apps not owned by system are vulnerable but without privilege escalation can not install rootkits or keyloggers. Even apps owned by system run with user privileges and require privilege escalation to install dangerous payloads.
Mac OS X does not prompt for authentication if you install apps in the proper location for that user account type. When installed in the proper location, apps are sandboxed from the system level of Mac OS X by the Unix DAC model used within Mac OS X.
Windows is less secure because most apps (Chrome only exception I can recall) install their associated files in levels of the system that require authentication regardless of user account type (unless Admin in Windows XP because running as superuser - no authentication required to install with elevated privileges - very dangerous). It is easier to trick Windows users to install a trojan with elevated privileges given that almost all apps ask for authentication to install and the user can not distinguish the intent of that authentication.
Page 30
The claim that the Application folder is unprotected is false. Security sensitive apps within the Application folder are owned by system.
Also, security sensitive system binaries are still stored in /bin and /sbin in Mac OS X.
Page 31
The ability to read the contacts stored in Address Book could be used by a worm to propagate. But, malware that uses this to spread is not likely to appear in the wild if the malware is not profitable. It is unlikely that malware will be profitable without being able to hook (this is a specific function) into apps owned by system.
Page 33
Starts off talking about trojans, trojans are easily avoided with user knowledge in Mac OS X because most apps do not require authentication to install if installed in the appropriate location where the Unix DAC model protects the system.
Viruses using the model shown in the article will not be successful without privilege escalation. This is the reason why Mac OS X malware is not successful in the wild.
By default, very few server side services are exposed in Mac OS X and those that are exposed are sandboxed. Vectors for worm propagation are limited to client side. Client side worms require authentication to install and spread if do not include privilege escalation via exploitation because of the Unix DAC model used in Mac OS X. Trojans used to trick users to authenticate are less likely to be successful in Mac OS X as stated above.
Much of the information in the PDF (http://www.macforensicslab.com/Malware_on_Mac_OS_X.pdf) associated with this article (http://www.macforensicslab.com/ProductsAndServices/index.php?main_page=document_general_info&products_id=174) is incorrect. For example:
Page 26
It refers to the bundle architecture as insecure. The argument presented would be true if security sensitive apps were not owned by system. Given that they are owned by system, malware cannot modify the bundle of an app owned by system without authentication when the app is run with user privileges in an admin or standard account.
For example, show package contents of iTunes, Safari, or Mail and try to create a folder in the bundle. In relation to the example in the article, try renaming iTunes. The argument in the article relies on actions that can not be completed in an OS X admin account; these type of changes are even more restricted in a standard account.
Apps not owned by system are vulnerable but without privilege escalation can not install rootkits or keyloggers. Even apps owned by system run with user privileges and require privilege escalation to install dangerous payloads.
Mac OS X does not prompt for authentication if you install apps in the proper location for that user account type. When installed in the proper location, apps are sandboxed from the system level of Mac OS X by the Unix DAC model used within Mac OS X.
Windows is less secure because most apps (Chrome only exception I can recall) install their associated files in levels of the system that require authentication regardless of user account type (unless Admin in Windows XP because running as superuser - no authentication required to install with elevated privileges - very dangerous). It is easier to trick Windows users to install a trojan with elevated privileges given that almost all apps ask for authentication to install and the user can not distinguish the intent of that authentication.
Page 30
The claim that the Application folder is unprotected is false. Security sensitive apps within the Application folder are owned by system.
Also, security sensitive system binaries are still stored in /bin and /sbin in Mac OS X.
Page 31
The ability to read the contacts stored in Address Book could be used by a worm to propagate. But, malware that uses this to spread is not likely to appear in the wild if the malware is not profitable. It is unlikely that malware will be profitable without being able to hook (this is a specific function) into apps owned by system.
Page 33
Starts off talking about trojans, trojans are easily avoided with user knowledge in Mac OS X because most apps do not require authentication to install if installed in the appropriate location where the Unix DAC model protects the system.
Viruses using the model shown in the article will not be successful without privilege escalation. This is the reason why Mac OS X malware is not successful in the wild.
By default, very few server side services are exposed in Mac OS X and those that are exposed are sandboxed. Vectors for worm propagation are limited to client side. Client side worms require authentication to install and spread if do not include privilege escalation via exploitation because of the Unix DAC model used in Mac OS X. Trojans used to trick users to authenticate are less likely to be successful in Mac OS X as stated above.
TheManOfSilver
Sep 4, 08:45 PM
This the more expensive version of that, except that is HD. Umm I wonder if you can steal the movie by picking up the stream from the air? LOL there goes DRM.
If it takes several hours to download a movie over the Internet....... How do I transmit the same movie over 802.11g in 2 hours or less to my tv?
Stick to the cables, you need 802.11n minimum to do this and it will kill your home network. Nobody else at home can do anything else.
Maybe I'm not doing this math right, but I'm not sure that's true. I can download a 4.7GB movie in about 2-3 hours over my internet connection (average speeds of 500Kb/sec). A 802.11a or g router transfers data at a max rate of 54Mbps or about 6.75MB/sec. That's about 12 times as fast, meaning that transmitting full DVD-quality video can occur in realtime, with plenty of bandwidth to spare to other functions while watching your movies. By the time HD video recording becomes standard, the Apple video airport express can be upgraded to 802.11n to provide even more bandwidth.
Do I have those figures wrong?
If it takes several hours to download a movie over the Internet....... How do I transmit the same movie over 802.11g in 2 hours or less to my tv?
Stick to the cables, you need 802.11n minimum to do this and it will kill your home network. Nobody else at home can do anything else.
Maybe I'm not doing this math right, but I'm not sure that's true. I can download a 4.7GB movie in about 2-3 hours over my internet connection (average speeds of 500Kb/sec). A 802.11a or g router transfers data at a max rate of 54Mbps or about 6.75MB/sec. That's about 12 times as fast, meaning that transmitting full DVD-quality video can occur in realtime, with plenty of bandwidth to spare to other functions while watching your movies. By the time HD video recording becomes standard, the Apple video airport express can be upgraded to 802.11n to provide even more bandwidth.
Do I have those figures wrong?
peharri
Sep 16, 07:41 AM
Somewhere in Culpertino, Steve Jobs is working out who he told they'd originally been working on a from the ground up design that they've now "scrapped"
Children+clip+art+free
clip art children writing
Royalty Free Cartoon Clipart
Free Homework Clipart
Free Vintage July 4th Clip Art
spring flower clip art free.
Children+clipart+free
clip art free children.
Children Reading
Clip Art of a Children#39;s
Free Vintage Children Clip Art
clip art free children. clip
#56509 Royalty-Free (RF) Clip
Free safety clipart picture of
Royalty Free Children Clipart
Royalty-free clipart
MattSepeta
Apr 20, 04:44 PM
For all the bleeding heart liberals I've spoken with over the years, who want crazy amounts taxed in order to support social uplift programs, I never see any of them giving away 50+% of their income to charity. It's a lot easier to ask the government to give other peoples money to charity.
Sure is. A hypothetical I like to propose:
Considering that the discrepancies between "rich" and "poor" as far as voting goes are far over blown (http://krugman.blogs.nytimes.com/2007/10/24/even-more-on-income-and-voting/) (Rich DO vote liberal and poor DO vote conservative) with the top third of white income earners STILL voting liberal, despite their high incomes and the ever-pervasive myth that rich people vote republican.
If this top third of income earners, instead of trying to legislate their charities through democratic votes and the force of law, simply put 50%, 60%, 70%, hell, 90% of their incomes towards charity rather than owning a home, owning multiple vehicles, owning boats, "traveling", shopping at Lunds or Kowalskis, etc, the poverty problem would be fixed, or at the very least, helped significantly without forcing ANYBODY to do ANYTHING.
But then again, these people would rather force everyone to pony up the dough rather than take a hit to their lifestyles.
Charity is a beautiful thing, but forced charity?
Sure is. A hypothetical I like to propose:
Considering that the discrepancies between "rich" and "poor" as far as voting goes are far over blown (http://krugman.blogs.nytimes.com/2007/10/24/even-more-on-income-and-voting/) (Rich DO vote liberal and poor DO vote conservative) with the top third of white income earners STILL voting liberal, despite their high incomes and the ever-pervasive myth that rich people vote republican.
If this top third of income earners, instead of trying to legislate their charities through democratic votes and the force of law, simply put 50%, 60%, 70%, hell, 90% of their incomes towards charity rather than owning a home, owning multiple vehicles, owning boats, "traveling", shopping at Lunds or Kowalskis, etc, the poverty problem would be fixed, or at the very least, helped significantly without forcing ANYBODY to do ANYTHING.
But then again, these people would rather force everyone to pony up the dough rather than take a hit to their lifestyles.
Charity is a beautiful thing, but forced charity?
Penfold2711
Apr 11, 05:37 AM
You can bet they are working on a new Firmware/Update to close this loophole Ole Stevie boy will not be a happy bunny today
whooleytoo
Sep 14, 06:22 AM
It seems very odd that Apple would adopt the iPod nano look 'n' feel on the iPhone, when they've just dropped it on the nano itself. On the other hand, it's possible the nano's look was changed to differentiate it from the upcoming iPhone - though I don't buy it.
The scroll wheel looks very low on the front of the device, meaning it's hard to use it with your thumb without the phone toppling out of your hand (as with many current phones).
Whatever about the design, if Apple could make any attractive phone, which is stable(!!), with a snappy UI (!!!), and with tight integration with the Mac (contacts, calendars/schedulers, perhaps even tighter integration with Address Book), I'd snap it up.
The scroll wheel looks very low on the front of the device, meaning it's hard to use it with your thumb without the phone toppling out of your hand (as with many current phones).
Whatever about the design, if Apple could make any attractive phone, which is stable(!!), with a snappy UI (!!!), and with tight integration with the Mac (contacts, calendars/schedulers, perhaps even tighter integration with Address Book), I'd snap it up.
swingerofbirch
Aug 31, 08:28 PM
These days there aren't a whole lot of morale boosters for living in the United States. You can give us this one.
sartinsauce
Sep 26, 09:12 AM
You know, I'm thinking people really want an iPhone. And I'm also thinking that they want it so bad they won't even consider the source of this information.
Usually, a rumor like this wouldn't get three pages of comments without somebody mentioning that this story comes from ThinkSecret. In case you're new here, MR readers have a habbit of panning ThinkSecret. It's worse than panning really, it's more like slaughtering any news that comes from ThinkSecret.
It's fun to watch members battle out mobile providers.
Ford! No, Chevy!
I mean...
Sony! No, Sony sucks, buy Panasonic.
I mean...
Verizon! Nooooooo, Verizon drips off donkey b*lls, go with Cingular!
You folk crack me up. Thank you.
Usually, a rumor like this wouldn't get three pages of comments without somebody mentioning that this story comes from ThinkSecret. In case you're new here, MR readers have a habbit of panning ThinkSecret. It's worse than panning really, it's more like slaughtering any news that comes from ThinkSecret.
It's fun to watch members battle out mobile providers.
Ford! No, Chevy!
I mean...
Sony! No, Sony sucks, buy Panasonic.
I mean...
Verizon! Nooooooo, Verizon drips off donkey b*lls, go with Cingular!
You folk crack me up. Thank you.
Blue Fox
Apr 22, 06:39 PM
Its a little sad though, about the SB IGP :(
Why? The Intel Integrated 3000 graphics outperform the current Nividia GeForce 320M's found in the current MacBook Airs and outgoing pre-gen MacBook Pro's. So why is an improvement sad?
Why? The Intel Integrated 3000 graphics outperform the current Nividia GeForce 320M's found in the current MacBook Airs and outgoing pre-gen MacBook Pro's. So why is an improvement sad?
danielwsmithee
Apr 25, 04:09 PM
Contrastingly, if you need to not have one, you can always buy a MacBook Air. I don't use my FireWire 800 port often, but when I do, I'm thankful it's there. The same goes for the optical drive. Again, if you don't want it, Apple makes the MacBook Air which comes without it for the truly space-concious.
No I can't just get an Air. Not if I want a quad-core i7 dedicated graphics, an SSD boot drive and a 1TB HD for data. That sounds awfully "Pro" to me.
No I can't just get an Air. Not if I want a quad-core i7 dedicated graphics, an SSD boot drive and a 1TB HD for data. That sounds awfully "Pro" to me.
ct-scan
Oct 12, 12:51 PM
They might as well add a Core 2 Duo Mac Book Pro too.
Hehe...this topic goes everywhere! ;)
Hehe...this topic goes everywhere! ;)
Multimedia
Sep 10, 05:01 PM
You might just get your wish; I saw this article/link while surfing over the MacNN website a couple of days ago (I'm still waiting for new MBPs myself, though! :( ):
Ultra compact computer arrangement Apple Patent Filing - Looks Like Cube II (http://www.electronista.com/articles/06/09/08/new.apple.cube.patent/)
Hope this isn't old news for everyone; this is my first post, although I've been following the forums ever since I started thinking about replacing my old Powerbook (should finally have the money by next month!).Excellent find and an award worthy first post. Thank you very much and welcome to the forums.What about the patent designs that were just shown of the Cube 2?
From Unwired View - Apple Cube reborn (http://www.unwiredview.com/2006/09/07/apple-cube-ii-computer/)This is very encouraging. Perhaps this is what Steve has to talk about on Tuesday. I am a Cube lover - still own two.
Ultra compact computer arrangement Apple Patent Filing - Looks Like Cube II (http://www.electronista.com/articles/06/09/08/new.apple.cube.patent/)
Hope this isn't old news for everyone; this is my first post, although I've been following the forums ever since I started thinking about replacing my old Powerbook (should finally have the money by next month!).Excellent find and an award worthy first post. Thank you very much and welcome to the forums.What about the patent designs that were just shown of the Cube 2?
From Unwired View - Apple Cube reborn (http://www.unwiredview.com/2006/09/07/apple-cube-ii-computer/)This is very encouraging. Perhaps this is what Steve has to talk about on Tuesday. I am a Cube lover - still own two.
chevyorange
Sep 14, 12:16 AM
I assume the screen would be a touch screen. I would hate to start dialing numbers using the click wheel.
I actually like the idea. There could be a virtual dial on the screen like an old school phone.
Silly me, though! :)
I actually like the idea. There could be a virtual dial on the screen like an old school phone.
Silly me, though! :)
Rodimus Prime
Apr 25, 01:11 AM
EDIT: @ Rodimus - Had she hit me when I slammed on the brakes, she would have been at fault. All I have to do is tell the cop that I thought I saw an animal run across the road. She is supposed to keep enough distance to be able to stop if I slam on the brakes. Doesn't matter than I cut her off, she has to prove that I did, and she also has to prove that I slammed on the breaks with malice.
-Don
umm good luck with that. My father has a ticket to prove other wise. He made the mistake and cut off a guy who was speeding by mistake. Cop handed him a ticket for illegal lane changed and the other guy a ticket for doing 20 over the limit.
It was declared a no fault and both were on their own. Both cars totaled.
You cut her off therefor made an unsafe lane changed. Legally you should of given her enough room to be able to adjust for you. Add to the fact you are 16 and chances are would be a witness or 2 saying you were speeding. Your word vs hers and your word is pretty worthless.
And if you did if they can prove malice or road rage you just increased your charges and heck could be nailed for insurance fraud as well.
You are proving to us all that you should not have a DL. You just are increasing the case that you should not be behind a wheel of a car.
On and do not use the argument that the car can do 186 mph. Sorry that is for another country. Top it off I am pretty sure my car can out handle your car.
I've seen people like the OP get pulled up and receive whopping great tickets from the cops. To say the least they look terrified about what their mum will say when she finds out. It makes me laugh.
Funny story. One time when I was driving back to TTU some idiot in a purple VW blew past me like I was standing still a little north of Houston. At the time I was doing 5-10 over the limit (75-80 mph). Scared the crap out me as they wiped right around me.
about 30-45 mins later I see the same purple VW pulled over and the driver was in hand cuffs. It was priceless.
-Don
umm good luck with that. My father has a ticket to prove other wise. He made the mistake and cut off a guy who was speeding by mistake. Cop handed him a ticket for illegal lane changed and the other guy a ticket for doing 20 over the limit.
It was declared a no fault and both were on their own. Both cars totaled.
You cut her off therefor made an unsafe lane changed. Legally you should of given her enough room to be able to adjust for you. Add to the fact you are 16 and chances are would be a witness or 2 saying you were speeding. Your word vs hers and your word is pretty worthless.
And if you did if they can prove malice or road rage you just increased your charges and heck could be nailed for insurance fraud as well.
You are proving to us all that you should not have a DL. You just are increasing the case that you should not be behind a wheel of a car.
On and do not use the argument that the car can do 186 mph. Sorry that is for another country. Top it off I am pretty sure my car can out handle your car.
I've seen people like the OP get pulled up and receive whopping great tickets from the cops. To say the least they look terrified about what their mum will say when she finds out. It makes me laugh.
Funny story. One time when I was driving back to TTU some idiot in a purple VW blew past me like I was standing still a little north of Houston. At the time I was doing 5-10 over the limit (75-80 mph). Scared the crap out me as they wiped right around me.
about 30-45 mins later I see the same purple VW pulled over and the driver was in hand cuffs. It was priceless.
3goldens
Apr 4, 12:05 PM
shot in the head! seems a little severe for a mall cop!
Rocketman
Aug 31, 03:24 PM
I don't care what it is, just give us something new to talk about. Mac Pro really nice machine but we saw it coming months in advance. Maybe not he exact spec but yeah we all knew it was coming. Same with Merom, Conroe etc... Give us something new, really new.
Get used to the new way. The only real suprise news from now on willl be specific software features, cosmetics and any new details not widely anticipated. The primary processor and platform/form factors are likely to remain unsurprising.
Furthermore, chip advances just took a big leap. Do not expect that again for 2 or more years.
Rocketman
Get used to the new way. The only real suprise news from now on willl be specific software features, cosmetics and any new details not widely anticipated. The primary processor and platform/form factors are likely to remain unsurprising.
Furthermore, chip advances just took a big leap. Do not expect that again for 2 or more years.
Rocketman
iJawn108
Oct 12, 08:25 PM
They should have come out with red Core 2 Duo MacBook Pros, now those would be hot items.:p
HecubusPro
Sep 5, 03:03 PM
I'm really hoping for merom in mbp's and mb's. The wait has been killing me.
Same here. I really want a new C2D MBP, but since all of this info about the iMac, movie store, nano, etc. has been taking the spotlight, the C2D laptop information has come to a near stop.
Will we now be forced to wait longer than September. I still doubt it, but the quiet on this front the past week has been alarming to me.
Same here. I really want a new C2D MBP, but since all of this info about the iMac, movie store, nano, etc. has been taking the spotlight, the C2D laptop information has come to a near stop.
Will we now be forced to wait longer than September. I still doubt it, but the quiet on this front the past week has been alarming to me.
mattthemutt
Sep 19, 02:43 PM
Hmm. Lets see $1M in a week, 52 weeks in a year, yup - that's about $50M. Wow - that dude is a genius!
My thoughts exactly.
My thoughts exactly.
KingCrimson
Apr 29, 11:49 AM
Haha, you're funny. I'm no fan of the Xbox, but you've got to be kidding if you think Nintendo is ever really going to kill Sony/MS. Nintendo may have sold the most consoles, but most main virtually unused, cos the Wii is woefully under-powered, propped up by the same old kiddy franchises and once you get past the new gimmicks gets boring fast.
I hardly know anyone with a Wii, that still uses it. The same will happen to the 3DS.
Nothing beats the XBox-Live ecosystem from what I read. Kudos for MSFT investing in it for a decade until it became profitable.
I hardly know anyone with a Wii, that still uses it. The same will happen to the 3DS.
Nothing beats the XBox-Live ecosystem from what I read. Kudos for MSFT investing in it for a decade until it became profitable.
SeaFox
Sep 16, 12:38 PM
I don't like the sound of "off the shelf" parts. That sounds like Apple is going to rebrand an existing phone or place the guts of another company's phone in their casing.
I'm don't want a piece-of-@#$% Motorola handset inside a nice brushed steel Apple form. Which is who I imagine they would partner with.
If you're listening Apple, I'm interested in the iPhone. I buy my phones outright and I'm not interested in changing carriers (currently on T-Mobile). So you better sell it yourself and hardware unlocked.
I'm don't want a piece-of-@#$% Motorola handset inside a nice brushed steel Apple form. Which is who I imagine they would partner with.
If you're listening Apple, I'm interested in the iPhone. I buy my phones outright and I'm not interested in changing carriers (currently on T-Mobile). So you better sell it yourself and hardware unlocked.
torbjoern
Apr 25, 03:26 AM
I looked through some of his older posts, and while none of them are quite as obvious about how shallow and uncaring he is you can tell that he probably doesn't include the whole story. For example, he likes to argue with his neighbors (http://forums.macrumors.com/showthread.php?t=978345&highlight=) I'm guessing that we only got half the story in that thread. Sounds like he was pretty rude in an Apple store. (http://forums.macrumors.com/showthread.php?t=644656&highlight=) and one quote from that thread:
plus parking in a handicapped spot. (http://forums.macrumors.com/showthread.php?t=928429&highlight=) So based on past examples of his attitude here, I think this is really the way he thinks, not just an attempt to troll.
You may certainly be right about this. On the other hand, I have encountered several trolls whose shtick (signature behavior) is identical to shallow and uncaring attitude. And the sense of entitlement is just typical for the trolls that were "born" in 2008 when the recession started.
plus parking in a handicapped spot. (http://forums.macrumors.com/showthread.php?t=928429&highlight=) So based on past examples of his attitude here, I think this is really the way he thinks, not just an attempt to troll.
You may certainly be right about this. On the other hand, I have encountered several trolls whose shtick (signature behavior) is identical to shallow and uncaring attitude. And the sense of entitlement is just typical for the trolls that were "born" in 2008 when the recession started.
Erwin-Br
Apr 19, 07:16 AM
Samsung is starting to be less and less innovative, they really are setting down at the drawing board , scratching their heads trying to come up with a design and then....." bing!!! their iphone mail alert just popped off and there is their next cell design!!
Samsung doesn't innovate on pretty case designs, and never has. They innovate on the stuff you can't see. You know, the stuff that gives function to those otherwise empty shells?
Samsung doesn't innovate on pretty case designs, and never has. They innovate on the stuff you can't see. You know, the stuff that gives function to those otherwise empty shells?
ECUpirate44
Mar 29, 11:43 AM
You have clearly never used Windows 7.
And neither have you.
Oh wait, you're the same person!
oops thinking snapshot!
And neither have you.
Oh wait, you're the same person!
oops thinking snapshot!