|
Focus on Apple
Re: .dmg file exploit Nov 21 2006 09:08PM mfossi securityfocus com (2 replies) Re: .dmg file exploit Nov 21 2006 09:49PM Roland Dobbins (rdobbins cisco com) (2 replies) Re: .dmg file exploit Nov 22 2006 03:25PM mfossi securityfocus com (1 replies) Re: .dmg file exploit Nov 22 2006 04:04PM Roland Dobbins (rdobbins cisco com) (1 replies) Re: .dmg file exploit Nov 22 2006 06:02PM Martin Roesch (roesch sourcefire com) (3 replies) Re: .dmg file exploit Nov 22 2006 06:40PM Jeramey Valley (ValleyJR mps k12 mi us) (1 replies) Re: .dmg file exploit Nov 22 2006 06:37PM Roland Dobbins (rdobbins cisco com) (1 replies) Re: .dmg file exploit Nov 22 2006 08:29PM Martin Roesch (roesch sourcefire com) (2 replies) Re: .dmg file exploit Nov 22 2006 08:45PM Roland Dobbins (rdobbins cisco com) (1 replies) Re: .dmg file exploit Nov 23 2006 10:15AM Simon Slavin (s slavin lancaster ac uk) (1 replies) Re: .dmg file exploit Nov 23 2006 07:53PM K F \(lists\) (kf_lists digitalmunition com) (1 replies) Re: .dmg file exploit Nov 23 2006 09:30PM Howard Oakley (h oakley btconnect com) (1 replies) Re: .dmg file exploit Nov 24 2006 03:12AM K F (lists) (kf_lists digitalmunition com) (1 replies) Re: .dmg file exploit Nov 24 2006 03:05PM Simon Slavin (s slavin lancaster ac uk) (1 replies) |
|
|
Privacy Statement |
Hash: SHA1
I just did a test, you can mount a DMG file over an FTP session. You
get a warning dialog when you try to do it though, it basically lets
you know that you'll be mounting it over your FTP link and that
performance won't be great, but it mounts the DMG on the local
filesystem (in /Volumes) which leads me to believe that if it was
hostile you'd get owned up.
Luckily, I don' t think there's anyway to force an automount over the
FTP link.
-Marty
On Nov 21, 2006, at 10:05 PM, Jason wrote:
> I think there still might be a path to follow for (semi auto?) remote.
>
> IIRC, Safari opens ftp:// as a mount in finder. I'm not in a
> position to
> test at the moment but I suspect that the right combination is
> easily found.
>
> mfossi (at) securityfocus (dot) com [email concealed] wrote:
>> Yes, it's just that if 'Open "safe" files after downloading' is
>> ebabled
>> it would be slightly more automatic. While not likely to make a
>> difference to advanced users, it would probably make it easier for
>> novice users to be exploited.
>>
>> Marc Fossi
>> Symantec Corp.
>> www.symantec.com
>>
>>
>> On Tue, 21 Nov 2006, Roland Dobbins wrote:
>>
>>>
>>> On Nov 21, 2006, at 7:19 AM, mfossi (at) securityfocus (dot) com [email concealed] wrote:
>>>
>>>> Another reason to make sure that the 'Open "safe" files after
>>>> downloading' option is unchecked in Safari.
>>>
>>> This is still an issue even if one downloads the .dmg and opens it
>>> later, is it not?
>>>
>>> --------------------------------------------------------------------
>>> ---
>>> Roland Dobbins <rdobbins (at) cisco (dot) com [email concealed]> // 408.527.6376 voice
>>>
>>> All battles are perpetual.
>>>
>>> -- Milton Friedman
>>>
>>>
>>>
>>
>
- --
Martin Roesch - Founder/CTO, Sourcefire Inc. - +1-410-290-1616
Sourcefire - Security for the Real World - http://www.sourcefire.com
Snort: Open Source IDP - http://www.snort.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Darwin)
iD8DBQFFZHUiqj0FAQQ3KOARAoXiAJoDV7mE1/COEBUleso+7eFjlZ74fQCeJmGQ
si0FKvRsb3xz3PbZoveouQs=
=gaTl
-----END PGP SIGNATURE-----
[ reply ]