daveinpoway
join:2006-07-03
Poway, CA | Highly-critical flaws found in Safari for Windows
Read the article here: »news.zdnet.co.uk/security/0,1000···5,00.htm |
|
Cudni
La Merma - Ciudad Fronteriza
Premium,MVM
join:2003-12-20
Someshire
 ·BTOpenworld
| not to worry, Apple will fix it in the next, seamless, update 
»Apple using iTunes update to auto-install Safari
Cudni
--
"Mercifully, he hit him with the soft end of the pistol."
Help yourself so God can help you.
Microsoft MVP, 2006-2007 |
|
Steve
SAS-70 is extortion
Consultant
join:2001-03-10
Tustin, CA
| reply to daveinpoway
OK, let's be fair: not everybody knows who everybody else is, and first impressions do count.
Bruce Schneier is a legendary security guy, who wrote the seminal book "Applied Cryptography" - this is the best book on the subject I've ever read. He has designed numerous crypto algorithms (Blowfish, Twofish, Yarrow) and put them all in the public domain so that crypto would be open to all.
He writes a free monthly column Crypto-Gram which is a must-read for serious security enthusiasts. It's not so much security in the how-to-clean-your-badware, but how to think about security in a bigger picture. I look forward to every 15th of the month.
Reading a few issues of Crypto-Gram will likely convince you that his is one of the better minds in security today, and you'd forgive him the "look".
Bruce Schneier is my hero.
Steve
--
Stephen J. Friedl | Unix Wizard | Microsoft Security MVP | Tustin, California USA | my web site |
|
Steve
SAS-70 is extortion
Consultant
join:2001-03-10
Tustin, CA
| reply to daveinpoway
This is really a moot point, because Apple's EULA say You can't install Safari for Windows on Windows anyway...
--
Stephen J. Friedl | Unix Wizard | Microsoft Security MVP | Tustin, California USA | my web site |
|
bcastner
Premium,MVM
join:2002-09-25
Chevy Chase, MD
clubs: 
·Verizon Online DSL
| Re: Highly-critical flaws found in Safari for Windows
We must be facing some similar broad joke.
From, as Steve  posted above, the Apple EULA forbidding the installation of Safari on non-Apple computers, even as it pushes Safari down their throats; to the notion it is appropriate to discuss the haircuts of security experts.
Truly one for the record books, anyway, for this Forum. |
|
EGeezer
Spring is here
Premium
join:2002-08-04
Central Ohio | Well, April 1 is less than a week away  |
|
lilhurricane
Crunchin' For Cures
Premium,Mod
join:2003-01-11
Purple Zone
clubs: |  reply to daveinpoway
(topic move) Highly-critical flaws found in Safari for Windows
Moderator Action
The post that was here (and all 10 followups to it), has been moved to a new topic .. »[OT] |
|
Transmaster
Onward Through The Fog
join:2001-06-20
Cheyenne, WY
| reply to bcastner
Re: Highly-critical flaws found in Safari for Windows
I have been using Safari it just to see what it is like, it is OK but I am not going to blow out FireFox anytime soon. I wonder if the Apple fanatics are despondent that Apple has done this...this traitorous action 
--
Send a prayer to Allah, eat Beans. |
|
RadioDoc
Sortofadog
Premium,ExMod 2000-03
join:2000-05-11
Chicago, IL | Looks like Safari may have upset the Apple cart. An undisclosed flaw has allowed OS X to be taken over just by visiting a website.
Not a good day in Cupertino, methinks.
--
Toolmaster of La Grange. |
|
SUMware
Premium
join:2002-05-21
| said by RadioDoc :Looks like Safari may have upset the Apple cart. An undisclosed flaw has allowed OS X to be taken over just by visiting a website. Yep. Info here:
»Hackers to challenge Windows, Mac OS X and Linux next week |
|
daveinpoway
join:2006-07-03
Poway, CA
| reply to RadioDoc
Before jumping all over Apple, keep in mind that pretty much all browsers (IE, Firefox, Safari, etc.) have had (and received patches for) security problems. The 100% secure browser does not exist yet (with the possible exception of something I was recently reading about, but I have been unable to locate a link to the article on the Internet, so I have been unable to post it here). |
|
Steve
SAS-70 is extortion
Consultant
join:2001-03-10
Tustin, CA
| said by daveinpoway :Before jumping all over Apple, keep in mind that pretty much all browsers (IE, Firefox, Safari, etc.) have had (and received patches for) security problems. . Do all browsers come with an arrogant, hubris-filled user base? |
|
SipSizzurp
Time to switch hands.
Premium
join:2005-12-28
Hilo, HI
 ·RoadRunner Cable
| said by Steve :Do all browsers come with an arrogant, hubris-filled user base? No, just the browsers of other forum sites have that problem.  |
|
RadioDoc
Sortofadog
Premium,ExMod 2000-03
join:2000-05-11
Chicago, IL
·AT&T Midwest
| reply to daveinpoway
said by daveinpoway :Before jumping all over Apple, keep in mind that pretty much all browsers (IE, Firefox, Safari, etc.) have had (and received patches for) security problems. Well, at this state of the art, and especially in Apple's case considering their arrogant, smug advertising campaigns promoting themselves as the purveyor of "safe" and "just works" computing, they had damn well better make sure Safari is not susceptible to such things when it is the default browser supplied with the OS.
Basically what you are saying is Apple's browser and OS is about six years behind Vista and Linux.
--
Toolmaster of La Grange. |
|
daveinpoway
join:2006-07-03
Poway, CA
| I looked back over my comments, and I fail to see where I said (or implied) that Apple is 6 years behind anyone. Given that browser flaws are being patched all of the time (as an example, Firefox is praised by many folks in this forum, yet it just received an update this week which addressed some security problems), I fail to see how a current security issue puts Apple any number of years behind anyone else. If I'm wrong, please correct me.
Unfortunately, "at this state of the art", none of the browsers we depend on are completely secure, nor should we expect them to be (if you know of one with 100% security, please tell me, so I can start using it). Given enough time, expertise and motivation, I'm sure that hackers can find exploitable bugs in every single one of them (and, in fact, they have). I recently read that hackers are switching their attention from operating systems to other applications (such as web browsers), so the problem may well get worse.
Having said this, do I believe that Apple (and other companies) should do better? Of course I do! |
|
