Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Security Update 2005-003 Released

Of the list that Doctor Q posted, it would seem that only Safari will affect. In reality I don't understand what the others mean. I will wait a few days, just to be safe.
 
Doctor Q said:
I'm glad Apple added a feature to identify sneaky URLs that use other scripts to make a URL look like a well-known one.

Here is a sample of a URL containing an imposter letter "a":

http://www.?pple.com/

That is not a Latin-1 letter "a" in the word "apple". Instead, it is a Cyrillic lowercase a and there is a non-Apple website at that URL.

You might be fooled by this URL before you apply this Security Update but should not be fooled afterwards. You should be able to use this post to test how the change works.
Click to expand...

How is this supposed to look? After updating it still looks like "apple" in this page. However, when I rollover it I see the interpretation is not "apple", it is "xn--pple-43d". Is that the intent?

I noticed something like this in a phishing email regarding paypal. It was really nicely done. Mail doesn't have a rollover function like Safari but when I viewed the raw source I could see that the button with the legitimate paypal address actually pointed to some sort of yahoo address. I never clicked the link so I don't know what that site looked like.

EDIT: I tried looking at this page on another Mac which was not upgraded. When I rolled over "www.apple.com" then the info at the bottom of the window said it would open "www.apple.com" in a new window. No idea this was a bogus address. After the update it indicates as noted above. Very cool.
 
The Safari update is a good one. I'll definitely be installing this as soon as I return to my Mac. Kudos to Apple for finding a fix for the security issue related to Punycode without disabling it altogether, like the Mozilla group did.
 
raggedjimmi said:
dosnt feel like much has changed. spose it IS just a minor update
Click to expand...
That's a good thing, no? This is a security update, after all. If you had seen changes you would have had security issues before this update, wouldn't you?
 
I kind of feel that the first successful Mac OS X virus isn't far off. All the credits that were given on the updated items seems to indicate that more and more groups are getting familiar with the inner workings of Mac OS X, and I'm not sure all of them will be nice and report what they find to Apple.
 
Doctor Q said:
Credit to Eric Johanson (ericj@shmoo.com) for reporting this issue to us.
Click to expand...
Funny... my brother's name is Eric Johanson, but this isn't him. (Of course, there are a TON of Johansons out there named Eric. My brother, one of my uncles, his son, my grandfather, and my great-grandfather have all been or are Eric Johansons.)

Oh, and just to remain on-topic, no problems whatsoever installing the update here.
 
Mitthrawnuruodo said:
Are you sure, I haven't had one single pop-up or -under since I "switched" to Firefox last November, not one single one! When the reports of pup-unders started emerging a month ago (or so) I visited every single site where Safari users reported pop-unders and Firefox took care of every single one... I've yet to see a site that cracks the pop-up blocker in Firefox, even if I've tried...please give me examples of sites that trigger a pop-up or -under in Firefox...
Click to expand...

Yup I'm sure. I get them at work as well where I use Firefox exclusively for surfing.
 
FFTT said:
The update isn't showing for 10.2.8 :(
Click to expand...

I think their Jaguar team is gone. Apple is now only working on Panther and Tiger.

Jaguar is now officially "un-updated" meaning that Tiger MUST be close!
 
gekko513 said:
I kind of feel that the first successful Mac OS X virus isn't far off. All the credits that were given on the updated items seems to indicate that more and more groups are getting familiar with the inner workings of Mac OS X, and I'm not sure all of them will be nice and report what they find to Apple.
Click to expand...

I think you should be quiet. You're ruining the party. Silence, blasphemer, silence!

:p
 
SiliconAddict said:
Not really.
Click to expand...

Are you really having trouble with them? I have had a couple of failures to successfully block pop-ups, in the recent past, but its still quite minimal. And I'm guessing you're not tr0lling, because you've got a firefox 'tar! :D
 
mkrishnan said:
Are you really having trouble with them? I have had a couple of failures to successfully block pop-ups, in the recent past, but its still quite minimal. And I'm guessing you're not tr0lling, because you've got a firefox 'tar! :D
Click to expand...

i get pop-ups in camino every now and then, for example www.interfacelift.com

might be switching back to safari though if this keeps up, but Camino is sooo much faster....
 
PlaceofDis said:
i get pop-ups in camino every now and then, for example www.interfacelift.com

might be switching back to safari though if this keeps up, but Camino is sooo much faster....
Click to expand...

Hmmm...I don't seem to get pop-ups there. Do you have adblock installed? My understanding is that these new pop-ups are being spawned by Flash code. So if you adblock the flash, you get rid of the popups too, right?
 
Pop-up blocking war.....

No Firfox ones do not always work and unfortunately I don' t have the time to dink with trying to figure out why they failed. The new ones don't always seem to happen on the same page every time. Visit it it once and no pop-under. Visit it again and pop-under. It depends on the ad rotation. I think the Ptihhelmet author has it right and they will eventually get it right in a release version of Firefox.
 
wrldwzrd89 said:
The Safari update is a good one. I'll definitely be installing this as soon as I return to my Mac. Kudos to Apple for finding a fix for the security issue related to Punycode without disabling it altogether, like the Mozilla group did.
Click to expand...
Mozilla.org didn't disable IDN, they show international domain names in punycode, just like Safari now does.
 
Does anyone else think its weird that Apple released this now considering 10.3.9 is apparently so close? I suppose it's a security update so they can't exactly make it and then keep it from us for the sake of putting it into the next OS update, but still... Maybe 10.3.9 isn't that close after all? :(
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back