KnightWRX
May 2, 04:35 PM
Is anybody actually bothering to do this in the wild against any OS?
The types of attacks you are referring to are not occurring in the wild on a massive scale. When was the last time you heard about one in the media?
Again, look, if you're not interested in the mechanics, that's fine. Stop replying to me.
My post is inquiring about the mechanics. For the past hour, I've been trying to find how this thing ticks by searching around for in-depth articles (none to find, everyone just points to Intego's brief overview that is seriously lacking in details) or for the archive itself.
If you don't want to take this discussion to the technical level I am trying to take it, just don't participate.
At the moment, there is no way to prevent the kinds of attacks you are referring to on any OS if a vulnerability exists that allows the attacker to exploit a running application.
I don't know of any other Web browser (this is not a OS problem, it's a Safari problem). that automatically assumes executables are safe and thus should be auto-executed.
Webkit2 will reduce access to user space when Safari (or any app using webkit2) is exploited by restricting the privileges of apps on a per app basis.
What does Webkit2 have anything to do with running an installer on the OS after downloading it ? That happens outside the rendering engine's sandbox. You're not quite understanding what this sandbox does if you think this protects you against these types of attacks.
Turn off "Open safe files after downloading" if you are worried about that type of attack implemented via "safe" files.
I think you missed the part where I don't use Safari. I'm pretty far away from allowing it to "auto-run" "safe" files (I choose what I want to run).
Again munkery, I appreciate you taking the time to respond, but I'm not some noob user. You are not answering my inquiries nor helping any here at the level I want to discuss this. I get everything you are saying. I've been getting that level for quite a few years. I'm trying to discuss at another level here. Do you want to participate or not at a higher level where we discuss the actual mechanics of this rather than just starring at the tip of the iceberg ?
The types of attacks you are referring to are not occurring in the wild on a massive scale. When was the last time you heard about one in the media?
Again, look, if you're not interested in the mechanics, that's fine. Stop replying to me.
My post is inquiring about the mechanics. For the past hour, I've been trying to find how this thing ticks by searching around for in-depth articles (none to find, everyone just points to Intego's brief overview that is seriously lacking in details) or for the archive itself.
If you don't want to take this discussion to the technical level I am trying to take it, just don't participate.
At the moment, there is no way to prevent the kinds of attacks you are referring to on any OS if a vulnerability exists that allows the attacker to exploit a running application.
I don't know of any other Web browser (this is not a OS problem, it's a Safari problem). that automatically assumes executables are safe and thus should be auto-executed.
Webkit2 will reduce access to user space when Safari (or any app using webkit2) is exploited by restricting the privileges of apps on a per app basis.
What does Webkit2 have anything to do with running an installer on the OS after downloading it ? That happens outside the rendering engine's sandbox. You're not quite understanding what this sandbox does if you think this protects you against these types of attacks.
Turn off "Open safe files after downloading" if you are worried about that type of attack implemented via "safe" files.
I think you missed the part where I don't use Safari. I'm pretty far away from allowing it to "auto-run" "safe" files (I choose what I want to run).
Again munkery, I appreciate you taking the time to respond, but I'm not some noob user. You are not answering my inquiries nor helping any here at the level I want to discuss this. I get everything you are saying. I've been getting that level for quite a few years. I'm trying to discuss at another level here. Do you want to participate or not at a higher level where we discuss the actual mechanics of this rather than just starring at the tip of the iceberg ?
Mattie Num Nums
Apr 15, 01:12 PM
LGBTQ teens are at the highest risk factor for suicide among ANY of their peers. That is why videos like this are more important than say "fat bullying."
So now were placing importance based on what? Suicide is suicide.
So now were placing importance based on what? Suicide is suicide.
boncellis
Jul 12, 10:50 AM
...So IMO, while this low-end tower would fill a gap in apple's line up and be ideal for many on this board, I'm not sure it's a gap that many consumers fit in to, or that apple particularly cares about filling.
As much as I hate to say it, you're probably right. Apple seems to be doing rather well with their current lineup after all.
What gets me is why Apple wouldn't put Merom in the Mini? A redesigned Mini offering different processors might help close the gap for those who want a more robust solution than the current Mini but can't (or won't) shell out the money for the Mac Pro.
As much as I hate to say it, you're probably right. Apple seems to be doing rather well with their current lineup after all.
What gets me is why Apple wouldn't put Merom in the Mini? A redesigned Mini offering different processors might help close the gap for those who want a more robust solution than the current Mini but can't (or won't) shell out the money for the Mac Pro.
joepunk
Mar 11, 10:15 AM
businessinsider.com (http://www.businessinsider.com/fukushima-nuclear-plant-2011-3#ixzz1GJ0GOsV2) has some updates to the reactor problem.
Update: There's no evidence of any radioactive leakage, but officials have confirmed that the cooling process for the nuclear plant has not yet gone according to plan.
Update 2: Japan has declared a nuclear emergency.
Update 3: 2000 residents near the Fukushima Nuclear Plant have been urged to evacuate.
Update 4: According to reports, Japanese jets have been ordered to fly over the Fukushima Nuclear plant
Update 5: According to Reuters, a Dam has broken in the same region as the at-risk nuclear power plant.
Update: There's no evidence of any radioactive leakage, but officials have confirmed that the cooling process for the nuclear plant has not yet gone according to plan.
Update 2: Japan has declared a nuclear emergency.
Update 3: 2000 residents near the Fukushima Nuclear Plant have been urged to evacuate.
Update 4: According to reports, Japanese jets have been ordered to fly over the Fukushima Nuclear plant
Update 5: According to Reuters, a Dam has broken in the same region as the at-risk nuclear power plant.
camomac
Jul 14, 02:12 PM
ahhh, why didn't they have dual optical slots in the current G5's..
too much heat from the PPC's and all those fans?
well i am really looking forward to the new look.
too much heat from the PPC's and all those fans?
well i am really looking forward to the new look.
theBB
Sep 12, 07:24 PM
Does this thing have an Ethernet port, and it apparently does. I'd rather not rely on wireless. Right now I have a VGA cable from my iMac to my TV, so I'd gain something by replacing it with a simple CAT5.
I'm a bit surprised not to see any USB or FW ports on there though. I was betting on being able to hook up an optional HDD.
It's got USB.
I'm a bit surprised not to see any USB or FW ports on there though. I was betting on being able to hook up an optional HDD.
It's got USB.
KnightWRX
May 2, 06:33 PM
Really,
BTW, the system call for that local in OS X was no longer needed so it was removed from OS X. It was only used by 32 bit processes.
Bugs are not flaws in a security model. They have nothing to do with "Unix security" being better. Stop hammering that point, it's not even valid.
BTW, the system call for that local in OS X was no longer needed so it was removed from OS X. It was only used by 32 bit processes.
Bugs are not flaws in a security model. They have nothing to do with "Unix security" being better. Stop hammering that point, it's not even valid.
slinger1968
Nov 2, 08:37 PM
Sorry, still trying to get up to speed on all of this intel stuff...:oNo worries I made the same mistake just a few days ago. The naming isn't all that helpful and some of it is pretty awful... "Core 2 Extreme" is the name of this 4 core processor? Great job Intel. :rolleyes:
jmadlena
Oct 7, 01:51 PM
Android is gonna take iPhone TO THE GROUND!
It's not a part of your system.
EDIT:
generally speaking, a company that only makes software (google) has higher profit margins compared to a company that makes hardware and software..(apple)
I don't see how Google, who licenses Android for free, has a higher profit margin than Apple, who sells the hardware (at a price), and the software (at a price to iPod touch users). I think Apple has higher margins in that aspect.
Google might have indirect revenue sources due to manufacturers licensing Android (ads, etc), but I don't believe there is any direct revenue. I stand to be corrected.
It's not a part of your system.
EDIT:
generally speaking, a company that only makes software (google) has higher profit margins compared to a company that makes hardware and software..(apple)
I don't see how Google, who licenses Android for free, has a higher profit margin than Apple, who sells the hardware (at a price), and the software (at a price to iPod touch users). I think Apple has higher margins in that aspect.
Google might have indirect revenue sources due to manufacturers licensing Android (ads, etc), but I don't believe there is any direct revenue. I stand to be corrected.
Mord
Jul 12, 01:54 PM
I am very disappointed in you Hector , you of all people should know better then to post something like this. Do u not realise that the Intel deal ment apple dosen't have to do it's own R&D anymore when it came to chip sets.
APPLE IS USING INTEL STOCK PARTS incase you didn't know , so mixing the MacPro with Conroe/Woody would not cost a dime more. they will use a basic P965 chipset for Conroe and 5000X Chipset for Woody.
any and ever motherboard has been designed with the chips lay out and logic requested by the vendor, in this case apple, the fact that they don't develop their own electronics changes nothing, freescale/IBM made the chipsets before the switch nothing has changed, apple outsourced the design of the board to intel sure but they are paying intel to do so somehow, anyway, the cost of support and manufacture rockets up too.
more i'm disappointed in you, i haven't seen you post in a year or so and your still the same childish n00b who completely misses the point.
the mac pro will be a pro machine, apple has never done a consumer tower and likely never will.
woodcrest is just conroe with SMP, overclocking is exactly the same, as in non existent due to EFI. professionals do not overclock their macs.
go play with your toys.
APPLE IS USING INTEL STOCK PARTS incase you didn't know , so mixing the MacPro with Conroe/Woody would not cost a dime more. they will use a basic P965 chipset for Conroe and 5000X Chipset for Woody.
any and ever motherboard has been designed with the chips lay out and logic requested by the vendor, in this case apple, the fact that they don't develop their own electronics changes nothing, freescale/IBM made the chipsets before the switch nothing has changed, apple outsourced the design of the board to intel sure but they are paying intel to do so somehow, anyway, the cost of support and manufacture rockets up too.
more i'm disappointed in you, i haven't seen you post in a year or so and your still the same childish n00b who completely misses the point.
the mac pro will be a pro machine, apple has never done a consumer tower and likely never will.
woodcrest is just conroe with SMP, overclocking is exactly the same, as in non existent due to EFI. professionals do not overclock their macs.
go play with your toys.
WiiDSmoker
Apr 20, 09:30 PM
So wait, you don't own a Mac or an iDevice but you post here constantly?
What's wrong with that? I may not own a particular product but like being in X products forums to learn about it.
What's wrong with that? I may not own a particular product but like being in X products forums to learn about it.
Multimedia
Oct 11, 04:19 PM
Got my coupon and tested it. It doesn't stack...total price is $1349.00Thanks for the update. Still as cheap as the refurbs. I think that's cheap enough for me.
the 30" is 4,096k pixels = $1349
the 24" x2 is 4,608k pixels = $1420
30" = 512k pixels smaller but one big canvas.
One card can drive a 30" + a 24" for a total of 7,400k pixels.
Going up from my current level of 4,224k or + 3,176k pixels.
Got my coupon and I'm good to go with my balance available on Friday to get this deal for $1460 including tax.
Thanks for the coupon tip rxse7en. I got one that lasts thru Monday. Going to buy it. I know it may still get cheaper, but it's cheap enough now to go for it - esp cause I have credit with Dell.
the 30" is 4,096k pixels = $1349
the 24" x2 is 4,608k pixels = $1420
30" = 512k pixels smaller but one big canvas.
One card can drive a 30" + a 24" for a total of 7,400k pixels.
Going up from my current level of 4,224k or + 3,176k pixels.
Got my coupon and I'm good to go with my balance available on Friday to get this deal for $1460 including tax.
Thanks for the coupon tip rxse7en. I got one that lasts thru Monday. Going to buy it. I know it may still get cheaper, but it's cheap enough now to go for it - esp cause I have credit with Dell.
Cutwolf
Mar 18, 12:10 PM
Some helpful quotes from the modmyi thread:
-------
I helped my boss through this one... I had him call AT&T and explain that he received a message about something called "tethering" and to act dumb and explain that he is a heavy pandora and Netflix user and doesn't understand why he's going to be billed more for it. Bottom line they couldn't prove it so they apologized and removed issue from his account with no changes.
Good luck to everyone. (my boss was on 4.2.1 and he is using about 25gb per month)
AT&T is hoping people will either ignore the message or call to apologize (Don't act guilty and you'll be fine)
--------
I told AT&T that I stream Sirius all day. They said my plan can stay the same since i don't "tether" lol
-------
-------
I helped my boss through this one... I had him call AT&T and explain that he received a message about something called "tethering" and to act dumb and explain that he is a heavy pandora and Netflix user and doesn't understand why he's going to be billed more for it. Bottom line they couldn't prove it so they apologized and removed issue from his account with no changes.
Good luck to everyone. (my boss was on 4.2.1 and he is using about 25gb per month)
AT&T is hoping people will either ignore the message or call to apologize (Don't act guilty and you'll be fine)
--------
I told AT&T that I stream Sirius all day. They said my plan can stay the same since i don't "tether" lol
-------
Roy
Oct 21, 12:32 PM
Anyone know anything about these suppliers, other than Crucial Technology?
jragosta
Mar 18, 04:43 PM
Obviously, Apple will freak (what else is new...), but all this does is provide a shortcut around the burn-to-CD-and-rerip shortcut that's built into iTunes. You still need to buy the music. So, at best, this makes it easier to share music, but it doesn't provide a new capability.
I think it's a great convenience. I'm just saying that the inevitable wrath-of-God response from Apple is somewhat unwarranted.
I disagree. What he's doing is illegal and unethical.
If you burn a CD and rip it back, you're losing quality. The owners of the music (mostly RIAA, but anyone who licenses it to Apple) apparently decided that they can live with that. They did NOT agree to what this guy is doing.
It's theft, pure and simple.
More like the wrath-of-Jobs! :rolleyes:
Anyway, I've never been one to agree with the Windows people that argue the security-by-obscurity for why Mac OS X is not hacked to bits like Windows, but it would seem that this adds aome serious fire to their arguement. Here in music where Apple is the most popular and widely used, they are getting hacked (semi-successfully) more often than their WMA counterpart.
There's a big difference. This is not a system security flaw. It's simply a matter of someone reverse engineering a file format. AFAIK, there isn't a single file format which has not been reverse engineered. That's actually a trivial task.
iTMS just used web service interfaces and XML over HTTP... It will be interesting to see just how they could stop an app from accessing.
What is more likely is that the iTMS servers would add in the DRM and buyer metadata before it gets downloaded. Its actually a little shocking that it wasn't designed to do that in the first place!
Yes, they could do that.
They will also easily obtain a court injunction to stop this. What he's doing is illegal from two perspectives. First, it's a violation of the iTMS terms of service (which allows only iTunes access). Second, it's a violation of DCMA.
Personally I think this is great! Any sort of DRM sucks, even if it is rather "liberal". That's like giving all your customers in your shop a pair of handcuffs to prevent theft, and saying "but these cuffs are really comfortable".
I happen to disagree - but that's because my company depends on the ability to protect our intellectual property in order to stay in business.
The music owners have the right to do whatever they want with the music. You can legally (and morally) do what they request or live without their music.
Your position is the same as a person who steals a BMW because he doesn't like the purchase terms.
This is great news - by removing the DRM I can play my music on any device I like. It is my music after all. .
No, it's not your music. The music belongs to whoever the artist sold it to (usually a member of the RIAA). They sell you a license to use the music under a given set of terms. If you violate the terms that you paid for, you're stealing.
And if the industry would sell cheaper music without DRM then P2P wouldn't be as big of a problem.
If BMW would sell cheaper 5 series cars, no one would steal them.
The music industry owns the music - and they're free to price it however they want. If you think the price is too high, your only legal and moral response is to not buy it. Not liking the price is not justification for theft.
I think it's a great convenience. I'm just saying that the inevitable wrath-of-God response from Apple is somewhat unwarranted.
I disagree. What he's doing is illegal and unethical.
If you burn a CD and rip it back, you're losing quality. The owners of the music (mostly RIAA, but anyone who licenses it to Apple) apparently decided that they can live with that. They did NOT agree to what this guy is doing.
It's theft, pure and simple.
More like the wrath-of-Jobs! :rolleyes:
Anyway, I've never been one to agree with the Windows people that argue the security-by-obscurity for why Mac OS X is not hacked to bits like Windows, but it would seem that this adds aome serious fire to their arguement. Here in music where Apple is the most popular and widely used, they are getting hacked (semi-successfully) more often than their WMA counterpart.
There's a big difference. This is not a system security flaw. It's simply a matter of someone reverse engineering a file format. AFAIK, there isn't a single file format which has not been reverse engineered. That's actually a trivial task.
iTMS just used web service interfaces and XML over HTTP... It will be interesting to see just how they could stop an app from accessing.
What is more likely is that the iTMS servers would add in the DRM and buyer metadata before it gets downloaded. Its actually a little shocking that it wasn't designed to do that in the first place!
Yes, they could do that.
They will also easily obtain a court injunction to stop this. What he's doing is illegal from two perspectives. First, it's a violation of the iTMS terms of service (which allows only iTunes access). Second, it's a violation of DCMA.
Personally I think this is great! Any sort of DRM sucks, even if it is rather "liberal". That's like giving all your customers in your shop a pair of handcuffs to prevent theft, and saying "but these cuffs are really comfortable".
I happen to disagree - but that's because my company depends on the ability to protect our intellectual property in order to stay in business.
The music owners have the right to do whatever they want with the music. You can legally (and morally) do what they request or live without their music.
Your position is the same as a person who steals a BMW because he doesn't like the purchase terms.
This is great news - by removing the DRM I can play my music on any device I like. It is my music after all. .
No, it's not your music. The music belongs to whoever the artist sold it to (usually a member of the RIAA). They sell you a license to use the music under a given set of terms. If you violate the terms that you paid for, you're stealing.
And if the industry would sell cheaper music without DRM then P2P wouldn't be as big of a problem.
If BMW would sell cheaper 5 series cars, no one would steal them.
The music industry owns the music - and they're free to price it however they want. If you think the price is too high, your only legal and moral response is to not buy it. Not liking the price is not justification for theft.
luci216
Apr 28, 08:34 AM
The top 3 also have much cheaper models than Apple.. which can contribute to their higher sale spots. Not many people are willing to sell out $1k for a computer, especially internationally. In Brazil, a MBP costs about $3k. DOLLARS. Not many people can afford that..
ct2k7
Apr 24, 01:50 PM
Currently the biggest threat to freedom and democracy is Islam.
Many people say this, but they fail at the point where actions are of culture and not representative of the religion itself.
I invite you to demonstrate how Islam is a threat to freedom and democracy.
Many people say this, but they fail at the point where actions are of culture and not representative of the religion itself.
I invite you to demonstrate how Islam is a threat to freedom and democracy.
superleccy
Sep 20, 06:14 AM
All these calls for adding tuners, hard drives and burners are missing the point. Those functions belong in the host computer. iTV is just a method of getting the content from your Mac/PC to your stereo or TV.
Agreed. If you want a Mac Mini on the shelf under your TV, then, er, buy a Mac Mini!
If it's got a hard disk in it that's used for anything more than caching your iTunes Library file and thumbnails, I'd be very surprised.
Agreed again. If the HD was to be used for anything more than this, Steve would have made a bigger deal of it at the presentation.
Cheers!
SL
Agreed. If you want a Mac Mini on the shelf under your TV, then, er, buy a Mac Mini!
If it's got a hard disk in it that's used for anything more than caching your iTunes Library file and thumbnails, I'd be very surprised.
Agreed again. If the HD was to be used for anything more than this, Steve would have made a bigger deal of it at the presentation.
Cheers!
SL
Ugg
Apr 15, 12:09 PM
Of course nobody cares about all the straight kids out there that are bullied or at least the media doesn't. Even if they're being called gay because they're not as masculine as society expects but if they're not actually gay then forget it. Those people might as well just kill themselves. At least that's what I've seen from experience.
Can you provide some statistics to back up your claim?
Can you provide some statistics to back up your claim?
HecubusPro
Sep 12, 06:52 PM
I don't think the box will have local storage per-se. - it isn't advertised (yet) as a DVR. It's more like the Elgato EyeHome as it streams content stored on your computer. So the HD issue will be on the computer.
That's why I put the "EDIT" in my above post. Thanks. :)
And I think it's a brilliant idea allowing it to stream from your computer. Looks like I'll be getting an external terabyte drive. :D
That's why I put the "EDIT" in my above post. Thanks. :)
And I think it's a brilliant idea allowing it to stream from your computer. Looks like I'll be getting an external terabyte drive. :D
bid2ask77
Dec 3, 11:29 AM
I havent reall had any problems with droped calls since 4.0 came out. I guess i am one of the lucky ones.
Sounds Good
Apr 10, 06:28 PM
However many of us who live in both OSes prefer Mac OS X on a Mac where it is appropriate.
The only "advantage" is being able to use OS X for the things it is good at.
I'm not sure sure what you mean when you say "for the things it is good at." What do you mean? What things?
The only "advantage" is being able to use OS X for the things it is good at.
I'm not sure sure what you mean when you say "for the things it is good at." What do you mean? What things?
edifyingGerbil
Apr 27, 03:04 PM
I'm afraid you are.
The Hebrew god is the same god as in polytheistic days, but once he had conquered all his fellow gods, he was left with unrivalled power. The Hebrew religion became monotheistic, and their new old god acquired sole power, but the root of the deity was no more or less than a shared and ancient mythology.
But these arguments don't refer to God as being derived from El, the arguments can only work if "God" is shorthand for "the entity described in the Judaeo-Christian Biblical texts".
The fact he is described on tablets in Ugarit doesn't matter for the purposes of ontological arguments that try to answer does "God" (the Judaeo-Christian God) exist?
This was my point, waaay back, about why I use the Judaeo-Christian God as opposed to god. Someone took umbrage at my use of Judaeo-Christian.
The Hebrew god is the same god as in polytheistic days, but once he had conquered all his fellow gods, he was left with unrivalled power. The Hebrew religion became monotheistic, and their new old god acquired sole power, but the root of the deity was no more or less than a shared and ancient mythology.
But these arguments don't refer to God as being derived from El, the arguments can only work if "God" is shorthand for "the entity described in the Judaeo-Christian Biblical texts".
The fact he is described on tablets in Ugarit doesn't matter for the purposes of ontological arguments that try to answer does "God" (the Judaeo-Christian God) exist?
This was my point, waaay back, about why I use the Judaeo-Christian God as opposed to god. Someone took umbrage at my use of Judaeo-Christian.
Chappers
Mar 11, 04:26 AM
Sadly death toll rises to 29
Having been in a big quake - I know how scary it is and hope that all their preparation helps.
Having been in a big quake - I know how scary it is and hope that all their preparation helps.
No comments:
Post a Comment