Apple's in the eye of flaw finders

Apple's in the eye of flaw finders
Robert Lemos, SecurityFocus 2006-02-07

At the recent ShmooCon hacking conference, one security researcher found out the hard way that such venues can be hostile, when an unknown hacker took control of the researcher's computer, disabling the firewall and starting up a file server.

Expand all | Post comment

Apple's in the eye of flaw finders 2006-02-07
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Rick (1 replies)

Re: Re: Apple's in the eye of flaw finders 2006-02-09
Jay Beale (1 replies)

Re: Re: Re: Apple's in the eye of flaw finders 2006-02-09
Anonymous

Apple's in the eye of flaw finders 2006-02-08
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Ralph

Apple's in the eye of flaw finders 2006-02-08
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-09
Anonymous

Apple's in the eye of flaw finders 2006-02-08
Alexey Vesnin

Apple's in the eye of flaw finders 2006-02-08
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Rick

Apple's in the eye of flaw finders 2006-02-08
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Anonymous

Don't be foolish 2006-02-08
Anonymous (2 replies)

Re: Don't be foolish 2006-02-08
Anonymous

I had no problems at Shmoocon 2006-02-08
Anonymous (2 replies)

Re: I had no problems at Shmoocon 2006-02-08
Anonymous (3 replies)

Re: Re: I had no problems at Shmoocon 2006-02-08
Anonymous

move along 2006-02-09
Anonymous

Re: Re: I had no problems at Shmoocon 2006-04-17
Anonymous

Re: I had no problems at Shmoocon 2006-02-08
Anonymous (2 replies)

Re: Re: I had no problems at Shmoocon 2006-02-09
Raven

Re: Re: I had no problems at Shmoocon 2006-02-10
R_U_Trustified?

Apple's in the eye of flaw finders 2006-02-08
Mike Andrews (1 replies)

Yes... when Mr. Lemos wrote, quoting Dan Kaminsky, "The reality is that security work does comes from a trial by fire," he said. "And Apple really has not had that experience. It had not had the experience from some 20 years that Unix had and that Linux has absorbed. It has not had the experience that Microsoft had with its summer of worms."

... He failed to mention that Microsoft created its own dilemma when it incorporated elements of the stolen PROMIS technology into its source code ? its, er, TOP SECRET source code.

The fact remains that for two decades Billy included such niceties as the parasite CommonName with OEM/bundled Windows installation media so that poor and middle class users of Windows ? those who were most likely to buy pre-installed systems and use them without protection... would supply a never-ending plethora of salable information to the cyber mafia.

Countless millions of pre-installed Windows systems are still infected with unca Billy's money-rakers.

What about Apple's track record? Doesn't its lack of a "trial by fire" signify that the overall character and integrity of Mr. Jobs and his staff are above reproach?

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11375/33067#33067

Re: Apple's in the eye of flaw finders 2006-03-07
Anonymous

Apple's in the eye of flaw finders 2006-02-08
Anonymous (2 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Anonymous

Re: Apple's in the eye of flaw finders 2006-02-09
Anonymous

do we want security through obscurity? 2006-02-08
assurbanipal (1 replies)

Re: do we want security through obscurity? 2006-02-08
Penguinisto

Apple's in the eye of flaw finders 2006-02-08
Scott Barman (www.barman.ws) (2 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Adam

Re: Apple's in the eye of flaw finders 2006-02-08
Anonymous

Hired Gun 2006-02-08
Anonymous

Long on FUD, short on fact 2006-02-08
Marty

Forensices did not reveal any clues? 2006-02-08
Anonymous