Security Update 2008-005 Released

Discussion in 'MacRumors.com News Discussion' started by MacRumors, Jul 31, 2008.

  1. MacRumors macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
  2. macbookairman macrumors 6502a

    Joined:
    Jan 15, 2008
    Location:
    Nebraska
    #2
    darn it. requires a restart.

    installed, working fine.
     

    Attached Files:

  3. WoFat macrumors member

    Joined:
    May 26, 2008
    #3
    Oh the humanity! A Restart! (insert head shake here)
     
  4. balwx macrumors regular

    Joined:
    Aug 22, 2007
  5. alphaod macrumors Core

    alphaod

    Joined:
    Feb 9, 2008
    Location:
    NYC
    #5
    First restart in weeks!

    So this prevents the publicized IP issues?
     
  6. jmadlena Guest

    #6
    Goodie. I love updating; always makes me feel a bit better. I don't know if my activities are susceptible to the DNS flaw, but I love knowing that it is fixed*.

    *At least until someone finds a new exploit.
     
  7. dadoc04 macrumors member

    Joined:
    Jul 19, 2008
    Location:
    Jax & DMV
  8. scotty56 macrumors regular

    Joined:
    Feb 12, 2008
    Location:
    Oregon
  9. macbookairman macrumors 6502a

    Joined:
    Jan 15, 2008
    Location:
    Nebraska
    #9
    haha. i hate restarting. i'm always in the middle of something important when a software update comes that requires a restart. (and i can't resist the urge to install the update)
     
  10. cgtyoder macrumors newbie

    Joined:
    Jul 18, 2002
    Location:
    Fresno
    #10
    It's about time

    Better late than never, I guess.

    Embarrassing that MS had this fixed a month ago.
     
  11. majordude macrumors 68020

    majordude

    Joined:
    Apr 28, 2007
    Location:
    Hootersville
    #11
    That's sorta strange... an update at 8:00PM PST? :confused:
     
  12. Auzburner macrumors 65816

    Auzburner

    Joined:
    Apr 11, 2008
    Location:
    Syracuse, NY - USA
    #12
    Took 3 minutes to find, read, install and restart. Complete. ]

    PS - Where'd all of the Home Depot ads come from?
     
  13. tfongg37 macrumors newbie

    Joined:
    Jul 31, 2008
    Location:
    Sacramento
    #13
    Good update. Security updates are always good. Hope iPhone 2.1 comes out ASAP. im sick of the 10 minute backups.
     
  14. encro macrumors 6502

    encro

    Joined:
    May 6, 2002
    Location:
    bendigo.victoria.au
    #14
    Security Update 2008-005 was released just hours after high profile articles such as:
    http://www.macworld.com/article/134793/2008/07/apple_dns.html

    The Press has been all over this since all but Apple had released a critical DNS update. Not strange, it's possibly just Apple's PR trying to implement damage control regarding their security reputation. There are other security issues that were resolved also ( see http://support.apple.com/kb/HT2647 ) so it may just be a coincidence with regards to timing.
     
  15. Nermal Moderator

    Nermal

    Staff Member

    Joined:
    Dec 7, 2002
    Location:
    New Zealand
    #15
    It didn't appear for me until I installed iTunes 7.7.1 :confused:
     
  16. sam10685 macrumors 68000

    sam10685

    Joined:
    Feb 2, 2006
    Location:
    Portland, OR
    #16
    Your mad because you had to restart your computer? What's that... 20-30 seconds? Yeah... I'd hate to see what happens if the computer ever needed to be turned COMPLETELY off.
     
  17. Eric S. macrumors 68040

    Eric S.

    Joined:
    Feb 1, 2008
    Location:
    Santa Cruz Mountains, California
    #17
    Wouldn't be much of a security update if it didn't. ;)
     
  18. shawnce macrumors 65816

    Joined:
    Jun 1, 2004
    #18
    Yeah good response time on MS part however the patch has had a few side effects (all correctable via registry modification IIRC)...

    http://support.microsoft.com//kb/956189

    Lets hope the BIND related side effects are minimal for Mac OS X server users and those that use BIND on Mac OS X (doubt many have the volume to hit the known performance issue in the P1 update)
     
  19. branjosef macrumors 6502a

    branjosef

    Joined:
    Oct 18, 2007
    Location:
    1.222.333.456
    #19
    Me too. My security update was "ribbed" for my pleasure :rolleyes:
     
  20. branjosef macrumors 6502a

    branjosef

    Joined:
    Oct 18, 2007
    Location:
    1.222.333.456
    #20

    Ah brings back memories ...;)
     
  21. macbookairman macrumors 6502a

    Joined:
    Jan 15, 2008
    Location:
    Nebraska
    #21
    i was in the middle of some important stuff. shheeesh. and i wasn't mad. i just said darn it.
     
  22. Elektronkind macrumors member

    Joined:
    Dec 24, 2003
    Location:
    Baltimore, MD
    #22
    Please note that the DNS vulnerability does not directly affect DNS clients per se, but is in DNS *servers*, which the multitude of you are not running. If you are running a DNS server (named) on your Mac, you likely know that you are since it would take manual setup to get running.

    This vulnerability in DNS servers *can* affect clients in that a server with a dirty DNS cache can pass the wrong data back to the requesting client... but this isn't the client's fault. It's the server's fault, which this patch addresses.

    This distinction is important, and would otherwise probably be lost on the majority of the crowd here.

    That said, you should probably install this eventually (and you eventually will via OSX update or this small one anyway) but don't get in a tizzy if you can't do it right this moment.
     
  23. sebastianlewis macrumors regular

    Joined:
    Jan 2, 2007
    Location:
    San Francisco
    #23
  24. janey macrumors 603

    janey

    Joined:
    Dec 20, 2002
    Location:
    sunny los angeles
    #24
    Security reputation? What security reputation? :D

    Honestly, shame on Apple. They're selling a server OS. They should have had this patch ready earlier, especially because Kaminsky let them in on the issue like he did with MS and ISC and Cisco *before* the multivendor patch release date. I was personally shocked to see absolutely no statement from Apple whatsoever that day. The response to my radar bug filed with Apple Product Security was insane.

    At least it's available. As far as I know, my ISP hasn't yet even considered it, so I'm using OpenDNS for the time being.
     
  25. Bob Knob macrumors 6502

    Joined:
    Mar 20, 2003
    #25
    I think the Home Depot ads are a great sign that macrumors has reached a audience big enough to pull down mainstream advertisers!
     

Share This Page

104 July 31, 2008