Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Apple Releases Security Update 2011-005 for OS X to Address Compromised Certificates

DigiNotar's servers were compromised several weeks ago, with hackers obtaining access to hundreds of certificates.
Click to expand...

That part of the article is completely wrong. The actual facts are:

* hackers compromised DigiNotar's servers
* the hackers generated hundreds of brand new perfectly valid certificates, for popular websites, including google.com.
* traffic for hundreds of thousands of computers, mostly in Iran, were directed to servers controlled by the hackers, using the hacked certificates
* the hacker could have accessed usernames/passwords/credit cards of anyone who accessed a website via their servers
* since the hacker may have your gmail username/password, they can probably gain access to almost any other account you have and perform identity theft, etc

This is a very serious attack, fortunately it's mostly only effected people in Iran.

The hacker has claimed to also have access to four other un-named certificate authorities, and has promised to do even worse stuff next. He's probably telling the truth.
 
benthewraith said:
Keychain is in utilities. You can also get there from Spotlight. You can perform a search in Keychain for DigiNotar. You can right click and delete it. Or you can double click and look in the window that pops up. Look for the drop down for trust and set it to never.

ilyxg.png
Click to expand...

Thanks.

Set it to Never Trust.

Now I'll re-start to see if that change is the reason my Yahoo Mail won't load.
–––––––––––
Re-starting helped with the speed at which Safari pages loaded, and no more sluggishness from Yahoo Mail.
It might have helped that I no longer have eight or more apps open.
No problems with sites I frequent, including banking.
 
Last edited:
vitzr said:
And Apples lack of attention to security results in this:

http://www.macobserver.com/tmo/article/lion_security_flaw_takes_backward_step_from_snow_leopard/

http://www.huffingtonpost.com/2011/09/20/mac-os-x-lion-password_n_971469.html

That's what happens when all their time is spent on bells and whistles to impress beginners.
Click to expand...

There is already a thread related to the issue presented in those links provided in your post.

https://forums.macrumors.com/threads/1231503/
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back