- TalkBack 7 of 38:
- Next »
- « Previous
- Thread View
- Flat View
- This "should" not be effected by root priveledges
-
The exploit says that a user could be tricked into
downloading malicious code and running it. That code
could be one of many things - many of which would not
need root privelege - say somthing like opening an
application and then doing something in that app - NOT
requiring any root privelege
If one were concerned about this you can open Safari
preferences and uncheck "Open safe files after
downloading". That would prevent the thingfrom running
and would simply put it in your selected download folder.
It can be prevented in IE by adding a dmg mime and file
type abd selecting save to folder, rather than selecting a
helper app to open it.
You must remember that this is all very theoretical
beccause it requires a website to lure a viewer and then
download a DMG.
I would think that the permanent solution would be for
Apple to remove the ability of Safari to automatically
decompress dmg file and run an installer script. That is a
big weakness of the application.
Safari's big advantage is its speed and faithfulness in
rendering. Its weakness is that it does not allow as many
preference selections as other browsers. IE's big weakness
on the Mac is that it's incredibly slow compared to the
competition and can do some really lousy rendering,
depending on the website. Mozilla is fast and faithful. It's
also the "safest" out of the box because it does not have
any helper apps configured. that's a big weakness for
people who do not know how to set the preferences to call
helper apps (probably the majority of users) - Posted by: j.m.galvin Posted on: 05/19/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story
No further replies to this post will be accepted.
What You'll Hear Here
ericortner | 05/18/04
|
You forgot
PA-ITGuy | 05/19/04
|
I imagine not many
cuervo-gold | 05/19/04
|
Correct me if I'm wrong
PA-ITGuy | 05/19/04
|
|
admin is not the same as rot
Stuka | 05/19/04
|
|
Not root
PA-ITGuy | 05/19/04
|
|
This "should" not be effected by root priveledges
j.m.galvin | 05/19/04
|
|
not what I ment
Stuka | 05/19/04
|
|
Anyone but Root
BitTwiddler | 05/19/04
|
|
Re: BitTwiddler
nikoli | 05/19/04
|
|
OK
PA-ITGuy | 05/19/04
|
|
Comparing Apples to ______?
toadlife | 05/19/04
|
|
re: what it really means
ryusen | 05/19/04
|
|
Genuine Issue
Fred Fredrickson | 05/19/04
|
|
The efficient solution
j.m.galvin | 05/19/04
|
|
Solution
ndelc | 05/19/04
|
|
There is no efficient solution.
Fred Flintsone | 05/19/04
|
|
Hee hee
tic swayback | 05/19/04
|
|
Dumbest Comment Ever
xero11 | 05/19/04
|
|
wow hook line and sinker....
JoeMama_z | 05/19/04
|
|
One too many quarry rocks to the head for Fred
MacCanuck | 05/19/04
|
|
You have the wrong forum...
BitTwiddler | 05/19/04
|
|
*clap*clap*(nt)
ryusen | 05/19/04
|
|
Horrible, just horrible
FilledOut | 05/19/04
|
|
It's funny...
bjbrock | 05/19/04
|
|
what???
ryusen | 05/19/04
|
|
Feeling lonely?
DarbyOhara | 05/19/04
|
|
Ok, you're feeling lonely
FilledOut | 05/19/04
|
|
I see no need to bash ZD. At least not this time...
BitTwiddler | 05/19/04
|
|
It'
Ron Goodman | 05/21/04
|
|
In Action
cuervo-gold | 05/19/04
|
|
Link to example
cuervo-gold | 05/19/04
|
|
One of the bad things about Safari
j.m.galvin | 05/19/04
|
|
Oooh. That's pretty scary all right.
Immanuel Tranz-Mischen | 05/19/04
|
|
I'm buying a PC
rkadowns | 05/19/04
|
|
Fess up you own a peecee alreadee don't ya
Squawkbox | 05/19/04
|
|
Here is the Secunia.com site and a slab of explanation from them
Squawkbox | 05/19/04
|
|
MAC
Enterprise Analyst | 05/22/04
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
- Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
- Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
SmartPlanet
- Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
- More from IBM
-
- How to Drive Better Business Outcomes with Exceptional Web Experiences Download the eBook
- Driving Business Agility through SOA Connectivity & Integration Read the White Paper from IBM
- Linking Decisions and Information for Organizational Performance Read the Tom Davenport study
