Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
How often do you repair permissions?
- Thread starter SC68Cal
- Start date
- Sort by reaction score
Eidorian
macrumors Penryn
I'm sure I need to obsessively repair the logs in /var that always have permission problems.
I repair permissions, and run all 3 maintenance scripts after I install something, everytime.
Thats about it tho
Thats about it tho
It's encouraging to see the absolute majority either never repair permissions or very rarely. I believe there is a bug currently which makes this dangerous.
If you repair permissions through OnyX then you are explicitly repairing permissions.
mad jew
Moderator emeritus
mkrishnan
Moderator emeritus
I only repair them manually when I see certain kinds of problems or errors.... which ends up being once every several months or less. I verify the disk if the iMac got shut down by a power outage (still need a UPS!!!)
Like IJ said, I basically gave up on "forcing" routine maintenance.
Like IJ said, I basically gave up on "forcing" routine maintenance.
xUKHCx
Administrator emeritus
Same here, took a little while to get out of my windows habits but i just leave it to do its own thing.
Mitthrawnuruodo
Moderator emeritus
I voted weekly...
I very rarely repair permissions manually (most often using MainMenu), only in the rare cases when my Mac feels a bit funky, in a non-specific way... then a quick repair and restart usually gets rid of the gremlins...
But, SuperDuper! always repairs permissions as part of the backup procedure, and even if I've been slacking a bit lately, I still intend to run SD! at least once a week to have current backup, thus also keeping my permissions repaired... 😉
I very rarely repair permissions manually (most often using MainMenu), only in the rare cases when my Mac feels a bit funky, in a non-specific way... then a quick repair and restart usually gets rid of the gremlins...
But, SuperDuper! always repairs permissions as part of the backup procedure, and even if I've been slacking a bit lately, I still intend to run SD! at least once a week to have current backup, thus also keeping my permissions repaired... 😉
Thanks for all the replies everyone.
The reason why I set up this poll is to see what kind of effect MOAB-15 would have on this community.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0345
MOAB-15 overwrites any program in the /Applications folder that contains a SUID bit with a malicious binary, then uses disk utility to perform a escalation to root.
There will be no prompt for admin password. You won't see it coming.
I've tested the MOAB-15 POC on my up-to-date system and the POC still works. This means that we've been vulnerable to a zero-day exploit for almost half a year and Apple has said nothing about it. They haven't tried to fix it, or anything.
In addition, if you try to secure your system against this POC, disk utility will actively remove your security when you repair your permissions.
The reason why I set up this poll is to see what kind of effect MOAB-15 would have on this community.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0345
MOAB-15 overwrites any program in the /Applications folder that contains a SUID bit with a malicious binary, then uses disk utility to perform a escalation to root.
There will be no prompt for admin password. You won't see it coming.
I've tested the MOAB-15 POC on my up-to-date system and the POC still works. This means that we've been vulnerable to a zero-day exploit for almost half a year and Apple has said nothing about it. They haven't tried to fix it, or anything.
In addition, if you try to secure your system against this POC, disk utility will actively remove your security when you repair your permissions.
xUKHCx
Administrator emeritus
So are we at risk if we repair permissions or if we don't. And is it still present in 10.4.10 as t mentions 10.4.8
Sorry, I edit my comments after my initial post, as I think of more things to say.
But yes, you're vulnerable no matter what you do.
xUKHCx
Administrator emeritus
If that is the case then why does it matter how often we repair permissions as it doesn't seem to have an effect on the ability of this POC.
Thanks for the information, is there anything we can do to protect ourselves.
bigandy
macrumors G3
You shouldn't be sorry. You're asking the right questions!
Here is how it stands so far.
http://www.seanmcollins.com/blog/?p=16
You're running a normal user account. Since you're not part of the admin group, the exploit cannot work until someone in the admin group runs it, or you authenticate with an admin user.
We'd have to set up a new poll to see how many people run as admin users on a daily basis as well.
Would someone start a new thread? We should get a new thread title to attract more people and warn them about this.