Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Windows spyware and Safari
- Thread starter Schtibbie
- Start date
- Sort by reaction score
Rodimus Prime
macrumors G4
these thread is an example of what is wrong by the apple community.
They fail to see the problem with safari automatically downloading a file with out ANY user input. That is a problem. It makes it very easy to deliver a trojin to mac. OSX is not any safer from trojins than windows because they relay one one thing and one thing only user stupidity. Part of the reason you do not see any for the mac is market share.
I could think of a way to make the file even more likely to be opened and that is just give it a some name that people would open with out thinking about it and even better if you can make the icon look safe as well.
If it is true this is a huge security hole. If and when malware gets written for a mac it will be much easier to infect the community hat windows because well mac users are arrogant in their safety and it will be used against them.
They fail to see the problem with safari automatically downloading a file with out ANY user input. That is a problem. It makes it very easy to deliver a trojin to mac. OSX is not any safer from trojins than windows because they relay one one thing and one thing only user stupidity. Part of the reason you do not see any for the mac is market share.
I could think of a way to make the file even more likely to be opened and that is just give it a some name that people would open with out thinking about it and even better if you can make the icon look safe as well.
If it is true this is a huge security hole. If and when malware gets written for a mac it will be much easier to infect the community hat windows because well mac users are arrogant in their safety and it will be used against them.
This is one of these things that I've got both opinions - I can't progress my views without contradicting myself.
I feel that OSX is a hell of a lot safer than Windows - but that is partly because of marketshare.
I need help on this one from people who know it all - I begin thinking, "it can't be that hard to create a program that say, deletes the contents of the application folder".
Is it this easy? Or would there be a whole load of permission problems required and OSX would just not allow it?
How about writing something like that for Windows - deleting everything in Program Files, would Windows not allow it (aside from the fact that it might not be able to delete open programs) or would it let the program do the damage?
Finding the holes in something like that can make it so easy to create a virus - make it an addon pack for say iTunes and someone will download it, run it and boom say goodbye to your applications.
Possible?
I feel that OSX is a hell of a lot safer than Windows - but that is partly because of marketshare.
I need help on this one from people who know it all - I begin thinking, "it can't be that hard to create a program that say, deletes the contents of the application folder".
Is it this easy? Or would there be a whole load of permission problems required and OSX would just not allow it?
How about writing something like that for Windows - deleting everything in Program Files, would Windows not allow it (aside from the fact that it might not be able to delete open programs) or would it let the program do the damage?
Finding the holes in something like that can make it so easy to create a virus - make it an addon pack for say iTunes and someone will download it, run it and boom say goodbye to your applications.
Possible?
Rodimus Prime
macrumors G4
I do not believe it is possible to write something like that but I may be wrong. It is possible to write a key logger that boots up with the computer trying to gather information.
As for that sight I will tell you that the downloaded file automatically also effect Firefox as well. I have not test IE. The only reason I know it effect Firefox is the AV software made a note of it and deleted it. (oh yes I am running it on windows). Now it could not open it but I can tell you it put it in an odd spot that I would of never of found it. I would not be surpised that on IE if the active X controls where running it would open it that way. Just it nice firefox does not have that ability
This actually happened to me very recently. I was browsing a torrent site, and the message came up saying something on the lines of:
"If your computer has been acting slower, bla bla bla, download this"
but i could just close it.
However a few moments later a window came up that seemed like a 'follow up' to this one, asking me to download a program. It didn't have a close windows button, and only would let me it ok. So i did and it began downloading an exe file. I cancelled it, but still there is an uncomplete file called 'winantispyware2007freeinstall.exe.download' in my downloads folder. Obnoxious..
"If your computer has been acting slower, bla bla bla, download this"
but i could just close it.
However a few moments later a window came up that seemed like a 'follow up' to this one, asking me to download a program. It didn't have a close windows button, and only would let me it ok. So i did and it began downloading an exe file. I cancelled it, but still there is an uncomplete file called 'winantispyware2007freeinstall.exe.download' in my downloads folder. Obnoxious..
you should be concerned
My girlfriend just ran into this site by doing a search for carpet cleaners.
I was redirected from this site from Google. http://www.rolegrad.cn/carpet.html
The big problem is that this pesky little javascript can prevent you from doing anything in Safari. What a pain in the ass. This little friggin' script takes over Safari. This kind of crap reminds me of the PORN-NADO.
My girlfriend just ran into this site by doing a search for carpet cleaners.
I was redirected from this site from Google. http://www.rolegrad.cn/carpet.html
The big problem is that this pesky little javascript can prevent you from doing anything in Safari. What a pain in the ass. This little friggin' script takes over Safari. This kind of crap reminds me of the PORN-NADO.
