goosnarrggh
Dec 5, 12:48 PM
Furthermore, one of the MOKB flaws is just a bug and is not actually a security vulnerability. The dmg vulnerability, wherein a malformed disk image can crash OS X and during this inject uknown code, has been debunked according to this guy (http://alastairs-place.net/2006/11/dmg-vulnerability/).
Indeed on first read, I'd say that he presents a convincing argument. I'll go along with his diagnosis that there's no hole that could open you up to arbitrary code execution. If that's your definition of a security hole, then it follows that there's no security hole there. But it's still leaving you open the possibility that the operating system may crash for no apparent reason, causing you to lose any unsaved work.
Lost work... Depending on how productive you are, that can easily result in monetary damage being done.
As I posted previously, that leaves you in no worse a situation than you always are if you're running a desktop computer without a UPS. But I think that it still warrants attention.
At best it still qualifies as an inconvenience, because the savvy user who saves her work regularly will only have lost 5 or 6 minutes of productivity including the reboot. At worst, it can result in hours of lost work for the user who doesn't understand the "save your work" mantra -- especially if we're talking about somebody who's protected by a battery backup and doesn't think that unexpected reboots should be possible on such an inherently stable operating system.
And it's undoubtedly a bug inside Apple's software that's causing this problem, therefore it is absolutely appropriate that Apple should be expected to fix it. I appreciate anybody's effort to bring such bugs to light, because that increases the probability that Apple will find out about it and fix it.
Indeed on first read, I'd say that he presents a convincing argument. I'll go along with his diagnosis that there's no hole that could open you up to arbitrary code execution. If that's your definition of a security hole, then it follows that there's no security hole there. But it's still leaving you open the possibility that the operating system may crash for no apparent reason, causing you to lose any unsaved work.
Lost work... Depending on how productive you are, that can easily result in monetary damage being done.
As I posted previously, that leaves you in no worse a situation than you always are if you're running a desktop computer without a UPS. But I think that it still warrants attention.
At best it still qualifies as an inconvenience, because the savvy user who saves her work regularly will only have lost 5 or 6 minutes of productivity including the reboot. At worst, it can result in hours of lost work for the user who doesn't understand the "save your work" mantra -- especially if we're talking about somebody who's protected by a battery backup and doesn't think that unexpected reboots should be possible on such an inherently stable operating system.
And it's undoubtedly a bug inside Apple's software that's causing this problem, therefore it is absolutely appropriate that Apple should be expected to fix it. I appreciate anybody's effort to bring such bugs to light, because that increases the probability that Apple will find out about it and fix it.
theBB
Jul 21, 12:13 PM
I didn't buy my Mac to be popular and I don't particularly care that lots of people are (or are not) using them. It's just an irrelevant metric to me.
Neither did I, but more market share means more software developers and more apps. That's the only reason I care.
Neither did I, but more market share means more software developers and more apps. That's the only reason I care.
danvdr
Apr 25, 04:52 PM
Whaa? That young? I have a 4 year old MBP that just about copes with aperture.
I've been taking a photography class and I'm getting tired of beachballs and seeing the word "processing".
I've been taking a photography class and I'm getting tired of beachballs and seeing the word "processing".
leekohler
Feb 28, 01:52 PM
I'm not saying that I don't think he's abusing some serious drugs, but I think he has more control over what he's doing/saying than we think.
Very doubtful. He sounds like my ex boyfriend who would call me at 4:30 in the morning to tell me that we need to get back together because he's out of rehab now, all while slurring his speech. He's got more wrong with him than substance abuse.
It is sad, but he is just having a total mental meltdown. He is clearly delusional if he believes any of the crap he has been spewing lately.
Oh yeah. And if he thinks he's going to get $3 million an episode, I've got some nice property in Florida real cheap. He's on the fast track to the gutter.
Very doubtful. He sounds like my ex boyfriend who would call me at 4:30 in the morning to tell me that we need to get back together because he's out of rehab now, all while slurring his speech. He's got more wrong with him than substance abuse.
It is sad, but he is just having a total mental meltdown. He is clearly delusional if he believes any of the crap he has been spewing lately.
Oh yeah. And if he thinks he's going to get $3 million an episode, I've got some nice property in Florida real cheap. He's on the fast track to the gutter.
baryon
Apr 11, 01:23 PM
Could someone clarify this for me: Aren't hard drives too slow to make use of Thunderbolt anyway? In a typical USB 2.0 external hard drive, what is the bottleneck in speed: The speed at which the hard drive spins, or the USB 2.0 connection? If it's the USB, then why do people even care about the RPM of a drive? If it's the RPM, then isn't USB 2.0 fast enough to run a hard drive at its native speed?
sammich
Oct 28, 01:06 AM
Well, I'll hop on the bandwagon. My measly old MBP should be able to cope with it. I'll get my PS3 onto the game as well, just to see how much I can get out of it.
(far out you guys are well equipped)
(far out you guys are well equipped)
Eriden
Mar 16, 09:14 AM
Good luck to the SCP people.
Still waiting at Brea to find out if I'm the third biggest chump here for waking up as early as I did, or if I'm "winning" to plagiarise from Jedi-master Sheen
Still waiting at Brea to find out if I'm the third biggest chump here for waking up as early as I did, or if I'm "winning" to plagiarise from Jedi-master Sheen
nishioka
Apr 28, 08:56 PM
If I look at people with their iphones, i see like less than 5% using anything on their phones. And all of them use the Apple bumper on some iphone 4. I've seen hundreds of iphones in the wild, but I still have to see one non-bumper case in the wild.
Anecdotal evidence is so exciting!
Anecdotal evidence is so exciting!
ciTiger
Apr 25, 01:17 PM
Finally! Some interesting Mac news! Get that refresh done so we can start talking about the MBP refresh!
Mattlike
Sep 14, 09:56 AM
Thanks. Watch for my YouTube� unboxing later. :p
haha, I look forward to it. :)
haha, I look forward to it. :)
Corban987
Apr 28, 04:46 PM
So you've waited this long for the white iPhone 4, then you put it in the case!? ROFL!
Agreed, why would you put a case around an iPhone 4 - you trying to make it UGLY, most cases just scratch the back of th ephone anyway as dust/dirt gets in there and just rubs between the case and the phone.
Waiting all this time for a white iPhone only to cover it up - DUH!
Agreed, why would you put a case around an iPhone 4 - you trying to make it UGLY, most cases just scratch the back of th ephone anyway as dust/dirt gets in there and just rubs between the case and the phone.
Waiting all this time for a white iPhone only to cover it up - DUH!
ThemacNub
Dec 5, 05:17 AM
I think if there were no guns besides the law enforcements then America would be a much safer place.
DaveTheGrey
Jul 24, 04:35 PM
finally...
one for me plz :)
dave
one for me plz :)
dave
Patdt13
Jan 29, 11:52 AM
Pre-ordered 127 Hours off Amazon
http://ecx.images-amazon.com/images/I/51qbg0thJEL._SL500_AA300_.jpg
Along with the soundtrack
http://ecx.images-amazon.com/images/I/41jftNxEctL._SL500_AA280_.jpg
http://ecx.images-amazon.com/images/I/51qbg0thJEL._SL500_AA300_.jpg
Along with the soundtrack
http://ecx.images-amazon.com/images/I/41jftNxEctL._SL500_AA280_.jpg
MagnusVonMagnum
Nov 19, 05:05 PM
See above, MagnusVonMagnum. I listed four very good reasons why enabling Flash in iOS Safari would be a terrible choice. If you wish your argument to be convincing, you need to address those four specific reasons.
I don't need to do squat guy. WTF do I care about your reasons for wanting to take away my choice to use Flash? I don't. It's not about "propping up" flash, it's about being able to access TODAY'S Internet, not hoping some day that we won't need Flash. Some of us don't hate Flash like you do. We just want to use the Internet unfettered by Steve Jobs playing the part of a Communist Dictator. The only reasons I see from you are excuses to praise Steve. If we had a choice, you could simply disable Flash and have what you already have yet the rest of us could then access the web without having to pay for 3rd party oddball solutions to watch a simple flash video (which does NOTHING to make other Flash functions work, BTW, leaving many sites useless even so. Whether those sites should depend on Flash is irrelevant to some degree since if you want to view and cannot simply due to Steve being a control freak and stubborn man, tough squat).
There are over 120M iOS devices in the world. Those owners have extremely attractive demographics for websites. If website owners haven't begun converting their content off of a proprietary wrapper, they just don't care.
No, they don't care. It's a drop in the ocean compared to the world at large nor should they have to be held hostage by Steve Jobs whose sole goal in life is to get you to pay him for every little thing you do in this world. Want a new battery? Sorry, but we've removed all our battery compartments, but we'll gladly replace your battery for you if you pay us $100+ and mail it to us and do without your device for several days just so we can get more money out of you rather than let you simply buy a battery and remove a simple cover and change it yourself. And THAT is precisely why I can't stand Steve Jobs' attitude towards Apple's customers. He wants to push his warped agendas and ring every last cent out of you no matter how inconvenient it might be to you. He wants to force the destruction of flash by denying his customers access to a large percentage of the world's web sites all the time while lying about iOS devices being able to access the 'real' or 'full' Internet. Sorry, but if you don't have Flash, you don't have the full Internet. I just want innovative products. That is what Steve is good at. That doesn't mean I want his arrogant ego side pushing those products with restrictions that have nothing to do with the technology and only to do with Steve's need to be a control freak.
I don't need to do squat guy. WTF do I care about your reasons for wanting to take away my choice to use Flash? I don't. It's not about "propping up" flash, it's about being able to access TODAY'S Internet, not hoping some day that we won't need Flash. Some of us don't hate Flash like you do. We just want to use the Internet unfettered by Steve Jobs playing the part of a Communist Dictator. The only reasons I see from you are excuses to praise Steve. If we had a choice, you could simply disable Flash and have what you already have yet the rest of us could then access the web without having to pay for 3rd party oddball solutions to watch a simple flash video (which does NOTHING to make other Flash functions work, BTW, leaving many sites useless even so. Whether those sites should depend on Flash is irrelevant to some degree since if you want to view and cannot simply due to Steve being a control freak and stubborn man, tough squat).
There are over 120M iOS devices in the world. Those owners have extremely attractive demographics for websites. If website owners haven't begun converting their content off of a proprietary wrapper, they just don't care.
No, they don't care. It's a drop in the ocean compared to the world at large nor should they have to be held hostage by Steve Jobs whose sole goal in life is to get you to pay him for every little thing you do in this world. Want a new battery? Sorry, but we've removed all our battery compartments, but we'll gladly replace your battery for you if you pay us $100+ and mail it to us and do without your device for several days just so we can get more money out of you rather than let you simply buy a battery and remove a simple cover and change it yourself. And THAT is precisely why I can't stand Steve Jobs' attitude towards Apple's customers. He wants to push his warped agendas and ring every last cent out of you no matter how inconvenient it might be to you. He wants to force the destruction of flash by denying his customers access to a large percentage of the world's web sites all the time while lying about iOS devices being able to access the 'real' or 'full' Internet. Sorry, but if you don't have Flash, you don't have the full Internet. I just want innovative products. That is what Steve is good at. That doesn't mean I want his arrogant ego side pushing those products with restrictions that have nothing to do with the technology and only to do with Steve's need to be a control freak.
wmmk
Jul 11, 08:56 PM
Who's "Walk Mossberg"?
Walt Mossberg, of the WSJ.
People make typos. Live with it:rolleyes:
Walt Mossberg, of the WSJ.
People make typos. Live with it:rolleyes:
trekkie604
Sep 12, 07:25 PM
Following the trend and tradition of our favorite series of threads...the "post your last purchase" threads, welcome to edition XIV!
Starting this off right! Links for Mods and other interested parties!
Post your last purchase (http://forums.macrumors.com/showthread.php?t=406860)
Post your last purchase II (http://forums.macrumors.com/showthread.php?t=450221)
Post your last purchase III (http://forums.macrumors.com/showthread.php?t=494787)
Post your last purchase IV (http://forums.macrumors.com/showthread.php?t=547632)
Post your last purchase V (http://forums.macrumors.com/showthread.php?t=591242)
Post your last purchase VI (http://forums.macrumors.com/showthread.php?t=631447)
Post your last purchase VII (http://forums.macrumors.com/showthread.php?t=672226)
Post your last purchase VIII (http://forums.macrumors.com/showthread.php?t=672226)
Post your last purchase IX (http://forums.macrumors.com/showthread.php?t=765588)
Post your last purchase X (http://forums.macrumors.com/showthread.php?t=805111)
Post your last purchase XI (http://forums.macrumors.com/showthread.php?t=842754)
Post your last purchase XII (http://forums.macrumors.com/showthread.php?t=884344&highlight=post+your+last+purchase+xii)
Post your last purchase XIII (http://forums.macrumors.com/showthread.php?t=944269&highlight=post+your+last+purchase+xii)
Go ahead and post your last purchase, and apparently original pictures are encouraged so we can see what you got!
And here my last purchase: Shaken green tea lemonade - I quit buying coffee from starbucks to reduce my sugar intake but I needed something to get from the coffee shop!
That thing has more sugar than a mocha FYI...
Starting this off right! Links for Mods and other interested parties!
Post your last purchase (http://forums.macrumors.com/showthread.php?t=406860)
Post your last purchase II (http://forums.macrumors.com/showthread.php?t=450221)
Post your last purchase III (http://forums.macrumors.com/showthread.php?t=494787)
Post your last purchase IV (http://forums.macrumors.com/showthread.php?t=547632)
Post your last purchase V (http://forums.macrumors.com/showthread.php?t=591242)
Post your last purchase VI (http://forums.macrumors.com/showthread.php?t=631447)
Post your last purchase VII (http://forums.macrumors.com/showthread.php?t=672226)
Post your last purchase VIII (http://forums.macrumors.com/showthread.php?t=672226)
Post your last purchase IX (http://forums.macrumors.com/showthread.php?t=765588)
Post your last purchase X (http://forums.macrumors.com/showthread.php?t=805111)
Post your last purchase XI (http://forums.macrumors.com/showthread.php?t=842754)
Post your last purchase XII (http://forums.macrumors.com/showthread.php?t=884344&highlight=post+your+last+purchase+xii)
Post your last purchase XIII (http://forums.macrumors.com/showthread.php?t=944269&highlight=post+your+last+purchase+xii)
Go ahead and post your last purchase, and apparently original pictures are encouraged so we can see what you got!
And here my last purchase: Shaken green tea lemonade - I quit buying coffee from starbucks to reduce my sugar intake but I needed something to get from the coffee shop!
That thing has more sugar than a mocha FYI...
motulist
Aug 16, 04:35 AM
I think I like the brushed metal look much better. :(
My opinion of brushed metal is that it's a very good theme and has big a cool factor, but the clean lines and clarity of the new theme has already won me over. It's not perfect, there are things I'd change, but I think it's a nice step up.
In fact, it reminds me of a super evolved version of OS 9's platinum look, which I really liked.
For those too young in Mac world to remember OS 9's platinum theme, you can see some here in the paragraph titled "Platinum vs. Aqua Interface Pictures" but bear in mind that this interface is VERY old at this point, so you to have think of it in context and not compare it to an interface from 2006.
http://www.ae-data.com/download.html
But why are OS X's UI designers so averse to putting in a line that demarks where the title bar stops and the window body begins?
My opinion of brushed metal is that it's a very good theme and has big a cool factor, but the clean lines and clarity of the new theme has already won me over. It's not perfect, there are things I'd change, but I think it's a nice step up.
In fact, it reminds me of a super evolved version of OS 9's platinum look, which I really liked.
For those too young in Mac world to remember OS 9's platinum theme, you can see some here in the paragraph titled "Platinum vs. Aqua Interface Pictures" but bear in mind that this interface is VERY old at this point, so you to have think of it in context and not compare it to an interface from 2006.
http://www.ae-data.com/download.html
But why are OS X's UI designers so averse to putting in a line that demarks where the title bar stops and the window body begins?
louis Fashion
Apr 26, 12:03 PM
Well they won't be charging me.
Branskins
Apr 15, 02:44 PM
You do know everyone who has a changelog is under NDA, don't you? Why don't you just go look at the change log?
You know full well that not everyone who comes here is a developer and are running Lion through other means. I am sick of these posts over and over with people acting all high up and saying things like "Why don't you just go look at the change log?" or "Why don't you send the bug report to Apple" or "Why don't you just post it on Apple developer forums?". Each of these posters know full well what they are doing and it is annoying.
MacRumors is for Mac enthusiasts and many of its members want access to previews/betas even without being a developer.
How come no one is ever upset when MR posts information they shouldn't be on the homepage? I don't see people getting upset about them posting change logs when they become available.
Gr!
You know full well that not everyone who comes here is a developer and are running Lion through other means. I am sick of these posts over and over with people acting all high up and saying things like "Why don't you just go look at the change log?" or "Why don't you send the bug report to Apple" or "Why don't you just post it on Apple developer forums?". Each of these posters know full well what they are doing and it is annoying.
MacRumors is for Mac enthusiasts and many of its members want access to previews/betas even without being a developer.
How come no one is ever upset when MR posts information they shouldn't be on the homepage? I don't see people getting upset about them posting change logs when they become available.
Gr!
mondesi43
Apr 15, 01:39 PM
With the update notice officially stating When Lion ships this summer What are the chances the iMac refresh will happen at the same time? or will it be in the Fall instead?
I think iMac overhaul is in the fall right after the back to school deals are over......
I think iMac overhaul is in the fall right after the back to school deals are over......
Full of Win
Apr 21, 10:30 PM
Take the fight to them Sammy! Don't give in to the bully that Apple has become.
ChrisGonzales90
Jun 6, 03:47 PM
Yeah, "accidentally," sure. :rolleyes: The price and the buttons on the app store are clearly labeled. You don't just "accidentally" purchase this. It's only believable if the kid is still an infant and randomly tap on stuff, but 11 year old? Come on. :rolleyes: Besides, there's an option to restrict the ability to install apps on the OS.
Kudos to Apple to do the refund. If the scenario was that the kid accidentally made an international call costing $$$, I don't think AT&T would budge.
It was done on an iPod Touch.
Kudos to Apple to do the refund. If the scenario was that the kid accidentally made an international call costing $$$, I don't think AT&T would budge.
It was done on an iPod Touch.
SeaFox
Dec 2, 06:51 PM
I voted "yes" becuase I'm concerned what this will do PR-wise for Apple, not so much about actual security concern. "LMH" may claim he's not an Apple-hater but a few things poke out from the interview:
The Linux kernel takes little time to break. I'm more familiar with the code and thus it also takes less time to isolate issues. OS X kernel (XNU) takes less time but depending on the area you're checking, debugging and isolation may require a bit more time (if you take into account that AppleTalk source code is almost unreadable and totally deprecated) [...] I didn't have much time left for working on Microsoft Windows but I've received the most helpful feedback from the MSRC people on potentially interesting stuff to check.
What I read from this passage is:
The Linux kernel takes little time to break. I'm more familiar with the code and thus it also takes less time to isolate issues. OS X kernel (XNU) takes less time but depending on the area you're checking, debugging and isolation may require a bit more time (if you take into account that AppleTalk source code is almost unreadable and totally deprecated) [...] I didn't have much time left for working on Microsoft Windows but I've received the most helpful feedback from the MSRC people on potentially interesting stuff to check.
What I read from this passage is:
0 comments:
Post a Comment