You know that it’s a major problem when some of the biggest news outlets are running the story and when some of the best known security firms are advising against running IE until a fix is issued.
So why are you still running Internet Explorer?
Here are some of the main reasons NOT to use IE:
It’s full [...]
Following on from my post about whether “Do Bloggers Need Privacy Statements”, I received the following response from the DPC. By the way, the delay in posting this is down to the real world intervening and not due to the DPC. In order to make it easier to follow, I have posted my original question, [...]
Secure Mac are reporting that they have found a trojan designed to take advantage of the ARDAgent root exploit that I posted about previously.
The Trojan dubbed “AppleScript.THT” allows the remote attacker full access to the system, steals usernames and passwords, hides by turning off system logging, opening firewall ports and can also be used to [...]
If you’re worried about the security problem with Apples Remote Desktop Sharing that I posted about yesterday, but still want to use the service, then here’s a quick solution:
Open Terminal and type, all on one line, the following command:
sudo chmod u-s /System/Library/CoreServices/RemoteManagement/ArdAgent.app/Contents/MacOS/ARDAgent
Now if you use,
osascript -e ‘tell app “ARDAgent” to do shell script “whoami”‘
you should [...]
Via Mulley is the case of boards.ie not being able to label a user as being banned because they used part of their name as their boards.ie username. The decision came from the Data Protection Commission, so boards.ie are required to follow it. Although this is a bit of a strange decision, I can see [...]
A serious security hole has been found in Mac OS X - both Leopard and Tiger are affected. The exploit allows someone with physical access to a Mac to run programs as the Root user.
The exploit uses the Apple Remote Desktop, (ARDAgent), application to execute a shell script. When the shell script is executed it [...]
