Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apple Releases Security Update for Jaguar

Posted by pudge on from the yummy-for-my-secure-tummy dept.

yoshiaki writes "Mac OS X Security Update 2002-08-23 includes updated components (OpenSSL, Security, & SunRPC) for Mac OS X 10.2, which provide increased security to prevent unauthorized access to applications, servers, and the operating system. Mac OS X Security Update 2002-08-23 is available at the Apple Knowledge Base." This appears to me to be similar to the update of a few days ago, but for 10.2 instead of 10.1.

36 comments

  1. What about burning iso discs? by Anonymous Coward · · Score: 3, Interesting

    When are they going to release a patch so you can burn hybrid cd's like you could in 10.0?

    1. Re:What about burning iso discs? by feldsteins · · Score: 2

      Excellent question. I'm eagerly awaiting the web tech notes for 10.2 so I can see exactly what it is burning and whether there is any way back to ISO9660 without resorting to Toast. If Apple seriously expects nobody to care about this loss of functionality they should have their heads examined.

      --
      You like your Macintosh better than me, don't you Dave? Dave? Can you hear me Dave?
    2. Re:What about burning iso discs? by foo12 · · Score: 3, Interesting

      Hopefully it's an honest, "Well shit!" error on Apple's part rather than intentionally stripping a feature --- they did redo the dialog that pops-up upon insertion of a blank optical volume.

      You [b]should[b] be able to regain the functionality in the interim by nabbing 'mkisofs' out of the Darwin tree and building a little AppleScript Studio app around it. mkisofs will write a ISO9660/HFS+ hybrid file system as a UDIF --- if I remember the manpage properly.

    3. Re:What about burning iso discs? by Draoi · · Score: 3, Informative
      and whether there is any way back to ISO9660 without resorting to Toast.

      Well there's always Discribe - I registered my copy last week. And, yeah, it works just fine on Jag. Now you can burn ISO images, as well as DVD. Kewl .... :-)

      --
      Alison

      "It is a miracle that curiosity survives formal education." - Albert Einstein

  2. Re:Security Patch? by feldsteins · · Score: 2

    So what if it would? Apple calls it a "Security Update." If you're implying that they're somehow glossing over the potential security implications of the product before patching by using this terminology...then I guess I don't see how.

    --
    You like your Macintosh better than me, don't you Dave? Dave? Can you hear me Dave?
  3. Re:Confused by digiplant · · Score: 3, Informative

    The patch was available yesterday before you were officially allowed to buy jaguar.

  4. It still does, it just doesn't tell you by ClaraBow · · Score: 4, Informative

    It writes CDFS discs that can be read by windows 95 and up. Try it, it works! Now you don't have to worry about different formats anymore.

    1. Re:It still does, it just doesn't tell you by Anonymous Coward · · Score: 0

      Except I can't get them to read in windows OR linux. Oh well, glad to know I'm part of such a wonderful technology.

    2. Re:It still does, it just doesn't tell you by ClaraBow · · Score: 2, Informative

      Here is information on CDFS :http://www.elis.rug.ac.be/~ronsse/cdfs/ Windows can mount this file systems, and so does Linux. Just burn the cd and it should mount on your favorite platform. Try it, then complain, if it doesn't work! Just relax and burn :)

    3. Re:It still does, it just doesn't tell you by Anonymous Coward · · Score: 0

      Here's an apple discussion on all this: Apple Discussion Board.

  5. before you complain about the patch by Leimy · · Score: 5, Insightful

    1) CDs were probably burned way before yesterday when you got OS X.
    2) The use of Open Sourced technology makes it somewhat easier to find bugs and patch them.
    3) Someone found a bug ... most likely after the CDs were declared to have a "golden image". Companies have a hard time changing deadlines and Apple was not only "on time" with this product but "ahead of schedule" [sure you could say that you want them to wait till they get it right but think of the scheduling costs of all those "100 minutes of OS X" presentations which would have to be moved]

    They patched it immediately. All you had to do was start the software update program. The only thing I would have recommended differently is maybe some sheet of paper in the box saying to run Software Update manually to get the update or a notice on www.apple.com about it.

    1. Re:before you complain about the patch by mkoz · · Score: 3, Insightful

      Actually apple does one better (at least my new installation did).

      Software Update ran automatically right after I installed 10.2.

      So I got the update within about 2 minutes of installing 10.2.

    2. Re:before you complain about the patch by foo12 · · Score: 1

      Actually the discs were probably packaged and shrinkwrapped soon after they were pressed --- it would've been impossible to add any paper addendum at that point without opening every single one of the tens of thousands of Mac OS X 10.2 boxes that have been manufactured.

      They could have included a notice in the shipping boxes of orders they handled but why bother? iirc, Software update is set to scheduled update out of the box.

    3. Re:before you complain about the patch by Anonymous Coward · · Score: 0

      No dead trees needed - 10.2 runs Software Update the first time it's connected to the internet.

  6. Re:Confused by Blackstealth · · Score: 2, Informative

    The patch was available yesterday before you were officially allowed to buy jaguar

    Unless you pre-ordered your copy from Apple and had it shipped. My copy arrived first thing Friday (23rd) morning and I was pretty surprised to find there was already a software update available...

  7. Re:Confused by Anonymous Coward · · Score: 1, Insightful

    You have to remember that the gold master and commercial packaging were completeld close to a month ago. The vulnerabilities fixed in the most recent software update weren't discovered until after Jaguar was sent to the manufacturers. They fixed the bugs and had an update available for when Jaguar was first legally available to consumers. Upon your first boot, Jaguar automatically runs software update, and downloads this patch. Cut Apple some slack, they are NOT Microsoft.

    Phil

  8. I wish.. by Noodlenose · · Score: 0, Offtopic
    that the bloody Puma (er, Jaguar) would finally arrive on my doorstep. I really, really look forward to the promised speed increase on my Dual - USB Ibook. Everything else is already spiffing, but the speed is annoying..

    Why does it always take so long for things to ship to New Zealand, grumble...

  9. Re:Confused by foobar104 · · Score: 3, Informative

    I can confirm that. I bought a brand new machine yesterday during the Apple Store's "midnight madness" sale. Brought it home and fired it up literally about 90 minutes after Jaguar was officially available for sale. (Well, not counting time zones.) First thing that happened was Software Update popping up and asking if it was okay to download the security update. The download took mere seconds, even on my lowly 768 Kbps DSL line. All in all, pretty professional.

  10. Is the HTML bold tag too hard for you? by Anonymous Coward · · Score: 0

    Honestly, what is so hard about the HTML bold tag?

    Drop the [b] shit. This isn't a fucking UBB.

    1. Re:Is the HTML bold tag too hard for you? by foo12 · · Score: 1

      Meh. Shouldn't feed the troll, but --- no there is nothing wrong with HTML. In fact, I get paid quite well to use it.

    2. Re:Is the HTML bold tag too hard for you? by Anonymous Coward · · Score: 0

      Just one question: who the fuck cares?

  11. Err, calling Jaguar "Puma" is very stupid... by Anonymous Coward · · Score: 0

    "...the bloody Puma (er, Jaguar)..."

    "Puma" is the codename for Mac OS X v10.1

    What the fuck are you calling 10.2 by the codename of 10.1? Even correcting it afterward in your silly little brackets, you are still stupid.

  12. it the turn around that matters by johnjones · · Score: 2

    what matters is the turnaround

    like the SSL baug and KDE 1 day compared to MS 1 week and counting

    the RPC only redhat and debian have fixes out everyone ese is fools they have some nice BSD people who know what they are doing

    regards

    John Jones

  13. Re:Confused by Niksie3 · · Score: 0

    dude don't call your DSL line lowly! some of us are still stuck on cable/modem/other evil things!

    --
    Sig you!
  14. double standard...? by pvera · · Score: 2, Insightful

    I *almost* posted a troll along the lines of "how come when MS releases a patch the day after a big release its suddenly such a big deal..." but I think Leimy nailed it in the head. Not only the CDs were pressed already and would cost too much to replace the first production run (guess *who* pays if that happens?) but they did fix them very quickly. When MS releases a patch like that it is usually way behind everybody else.

    --
    Pedro
    ----
    The Insomniac Coder
  15. Re:Confused by foobar104 · · Score: 2

    Really? I thought 768 Kbps was pretty much the ass end of broadband.

  16. why so large? by Anonymous Coward · · Score: 1, Insightful

    Any ideas why it needs > 300 megs to install?
    Is it the prebinding?

    1. Re:why so large? by foo12 · · Score: 1

      It's a known flaw in Apple's software install engine --- it always seems to list the minimum size as 300MB. I'm really surprised that they didn't fix that in Jag.

  17. Why is this news? by Anonymous Coward · · Score: 0

    Is EVERY security update going to be headline news?
    Why is it that apple seem to wait to bundle patches, rather than releasing them to fix one problem at a time?

    Are they worried that Mac OS X will get a reputation for needing lots of patches?

  18. Re:Confused by mr100percent · · Score: 1

    No, 256kbps Cable/DSL exists. You're not the lowest, but not the highest speed either. Cable can get to 1.5Mbps for me when it's late night.

  19. It's the same as the 2002-08-02 update for 10.1.5 by mjs · · Score: 1

    "This security update is for Mac OS X 10.2 (Jaguar) and applies the fixes contained in Security Update 2002-08-02 which was for Mac OS X 10.1.5." (Apple)

  20. Patches by Tsk · · Score: 2

    I bet apple will release version 10.2.1 rela soon now because It's been almost A month since jaguar went GM.

    --
    none Yet.