Articles tagged in apple

  1. Mac OS X Root Escalation with AppleScript

    Read this story on Slashdot.

    "Half the Mac OS X boxes in the world (confirmed on Mac OS X 10.4 Tiger and 10.5 Leopard) can be rooted through AppleScript:

    osascript -e 'tell app "ARDAgent" to do shell script "whoami"';

    Works for normal users and admins, provided the normal user wasn't switched to via fast user switching. Secure? I think not." On the other hand, since this exploit seems to require physical access to the machine to be rooted, you might have some other security concerns to deal with at that point, like keeping the intruder from raiding your fridge on his way out.

    In the comment section it has been confirmed that

    1. It only works if the user is logged into the Mac, but not via fast user switching.
    2. Disable Apple Remote Desktop does not work.
    3. It works over ssh if the same user also happens to be logged in.

    Saying "physical access is required" is simply irresponsible. People might click on strange attachments or weird files downloaded from the net, which might run commands to get root privilege. Or maybe there are other exploits in Mac OS X that can get remote hackers local user privilege, and then use this to gain root.

    Actually it is not hard to get physical access either. Sydney Apple Store opens tonight. Watch out for those pimple-faced teens typing vigorously in from the Terminal.app tonight!

  2. Steve Jobs' 90 Minutes Keynote in 60 Seconds

    Via Jason Calacanis, thanks to Mahalo Daily for compressing Steve Jobs' 2008 MacWorld Keynote into 60 seconds, I have just saved 89 minutes of my life! Yes, it is better and better.
  3. The Ultimate Portable Notebook - Air or Eee?

    All right. I guess everyone has seen the new MacBook Air when Mr. Stevie pulled it out from the brown paper bag. Wow, it is thin! According to the Apple website, MacBook Air is ultrathin, ultraportable, and ultra unlike anything else. But you don't lose inches and pounds overnight. It's …
  4. Apple, iPhone and Openness

    John Gruber: Forever is a long time: "There's only one way to pressure Apple into opening up iPhone development, and it isn't by developing underground iPhone apps. It's by not buying iPhones." You can actually buy an unlocked iPhone in Australia for less than AUD$800 (although I suspect it …
  5. iPod Generation Six

    Yes. It was released this morning. Now the iPod family consists of: iPod Touch 8GB/16GB solid state with iPhone-like touch-screen interface, 3.5" widescreen display, Safari web browser and Wi-Fi. $419/$549. iPod Classic 80GB/160GB 1.8" hard disk with an all metal design, 2.5" widescreen LCD …
  6. Apple's New Aluminum iMac

    Apple has Just unveiled the latest aluminum iMac. It is an all-in-one just like all the previous models, but thinner, faster and (more importantly) cheaper. Starting from AUD$1,698 for a 20 inch 2.0GHz Core 2 Duo, to top spec AUD$3,339 for a 24 inch with …
  7. Microsoft vs. Apple on Anti-Aliasing

    I was wondering why the font rendering on Safari for Windows looks so different. Actually I've used a Mac for the last 4 years, but seeing Apple's anti-aliasing rendering engine working on Windows does feel a little bit strange. Joel Spolsky outlined the differences between two camps: Apple generally believes …
  8. Safari for Windows Released

    Yup. You all heard that? Safari, the default web browser on Mac, now also has a Windows version ready to be downloaded. It is a 8MB download without the Quicktime runtime, but still contains useless attachments like Bonjour and Apple software updater, although these are optional and you don't need …
  9. Fake Email and Apple's $4 Billion Market Cap Wipe Off

    TechCrunch: Engadget Knocks $4 billion off Apple Market Cap on Bogus iPhone email. Verdict -- someone is getting into serious trouble. Just a side note -- it is actually not hard to understand why public companies do not like their employees blogging, especially when it is (1) not moderated (2) talking about …
  10. Steve Jobs' Thought on Music

    Thought on Music, written by Apple CEO Steve Jobs on the topic of DRM protected music. Problem: "The problem, of course, is that there are many smart people in the world, some with a lot of time on their hands, who love to discover such secrets and publish a way …