Apple Releases Security Update for Jaguar

yoshiaki writes "Mac OS X Security Update 2002-08-23 includes updated components (OpenSSL, Security, & SunRPC) for Mac OS X 10.2, which provide increased security to prevent unauthorized access to applications, servers, and the operating system. Mac OS X Security Update 2002-08-23 is available at the Apple Knowledge Base." This appears to me to be similar to the update of a few days ago, but for 10.2 instead of 10.1.

Security Patch?

Wouldn't this type of update be considered a security patch if it were released for windows?

Re:Security Patch?

[feldsteins]

So what if it would? Apple calls it a "Security Update." If you're implying that they're somehow glossing over the potential security implications of the product before patching by using this terminology...then I guess I don't see how.

What about burning iso discs?

When are they going to release a patch so you can burn hybrid cd's like you could in 10.0?

Re:What about burning iso discs?

[feldsteins]

Excellent question. I'm eagerly awaiting the web tech notes for 10.2 so I can see exactly what it is burning and whether there is any way back to ISO9660 without resorting to Toast. If Apple seriously expects nobody to care about this loss of functionality they should have their heads examined.

Re:What about burning iso discs?

[foo12]

Hopefully it's an honest, "Well shit!" error on Apple's part rather than intentionally stripping a feature --- they did redo the dialog that pops-up upon insertion of a blank optical volume.

You [b]should[b] be able to regain the functionality in the interim by nabbing 'mkisofs' out of the Darwin tree and building a little AppleScript Studio app around it. mkisofs will write a ISO9660/HFS+ hybrid file system as a UDIF --- if I remember the manpage properly.

Re:What about burning iso discs?

[Draoi]

and whether there is any way back to ISO9660 without resorting to Toast.

Well there's always Discribe - I registered my copy last week. And, yeah, it works just fine on Jag. Now you can burn ISO images, as well as DVD. Kewl .... :-)

Confused

[inkfox]

So the OS was released yesterday despite pending security problems. Were buyers told that they should wait a day for a patch, or were they left running vulnerable systems overnight?

Re:Confused

[digiplant]

The patch was available yesterday before you were officially allowed to buy jaguar.

Re:Confused

[Blackstealth]

The patch was available yesterday before you were officially allowed to buy jaguar

Unless you pre-ordered your copy from Apple and had it shipped. My copy arrived first thing Friday (23rd) morning and I was pretty surprised to find there was already a software update available...

Re:Confused

You have to remember that the gold master and commercial packaging were completeld close to a month ago. The vulnerabilities fixed in the most recent software update weren't discovered until after Jaguar was sent to the manufacturers. They fixed the bugs and had an update available for when Jaguar was first legally available to consumers. Upon your first boot, Jaguar automatically runs software update, and downloads this patch. Cut Apple some slack, they are NOT Microsoft.

Phil

Re:Confused

[foobar104]

I can confirm that. I bought a brand new machine yesterday during the Apple Store's "midnight madness" sale. Brought it home and fired it up literally about 90 minutes after Jaguar was officially available for sale. (Well, not counting time zones.) First thing that happened was Software Update popping up and asking if it was okay to download the security update. The download took mere seconds, even on my lowly 768 Kbps DSL line. All in all, pretty professional.

Re:Confused

[Niksie3]

dude don't call your DSL line lowly! some of us are still stuck on cable/modem/other evil things!

Re:Confused

[foobar104]

Really? I thought 768 Kbps was pretty much the ass end of broadband.

Re:Confused

[mr100percent]

No, 256kbps Cable/DSL exists. You're not the lowest, but not the highest speed either. Cable can get to 1.5Mbps for me when it's late night.

It still does, it just doesn't tell you

[ClaraBow]

It writes CDFS discs that can be read by windows 95 and up. Try it, it works! Now you don't have to worry about different formats anymore.

Re:It still does, it just doesn't tell you

Except I can't get them to read in windows OR linux. Oh well, glad to know I'm part of such a wonderful technology.

Re:It still does, it just doesn't tell you

[ClaraBow]

Here is information on CDFS :http://www.elis.rug.ac.be/~ronsse/cdfs/ Windows can mount this file systems, and so does Linux. Just burn the cd and it should mount on your favorite platform. Try it, then complain, if it doesn't work! Just relax and burn :)

Re:It still does, it just doesn't tell you

Here's an apple discussion on all this: Apple Discussion Board.

before you complain about the patch

[Leimy]

1) CDs were probably burned way before yesterday when you got OS X.
2) The use of Open Sourced technology makes it somewhat easier to find bugs and patch them.
3) Someone found a bug ... most likely after the CDs were declared to have a "golden image". Companies have a hard time changing deadlines and Apple was not only "on time" with this product but "ahead of schedule" [sure you could say that you want them to wait till they get it right but think of the scheduling costs of all those "100 minutes of OS X" presentations which would have to be moved]

They patched it immediately. All you had to do was start the software update program. The only thing I would have recommended differently is maybe some sheet of paper in the box saying to run Software Update manually to get the update or a notice on www.apple.com about it.

Re:before you complain about the patch

[mkoz]

Actually apple does one better (at least my new installation did).

Software Update ran automatically right after I installed 10.2.

So I got the update within about 2 minutes of installing 10.2.

Re:before you complain about the patch

[foo12]

Actually the discs were probably packaged and shrinkwrapped soon after they were pressed --- it would've been impossible to add any paper addendum at that point without opening every single one of the tens of thousands of Mac OS X 10.2 boxes that have been manufactured.

They could have included a notice in the shipping boxes of orders they handled but why bother? iirc, Software update is set to scheduled update out of the box.

Re:before you complain about the patch

No dead trees needed - 10.2 runs Software Update the first time it's connected to the internet.

I wish..

[Noodlenose]

that the bloody Puma (er, Jaguar) would finally arrive on my doorstep. I really, really look forward to the promised speed increase on my Dual - USB Ibook. Everything else is already spiffing, but the speed is annoying..

Why does it always take so long for things to ship to New Zealand, grumble...

Is the HTML bold tag too hard for you?

Honestly, what is so hard about the HTML bold tag?

Drop the [b] shit. This isn't a fucking UBB.

Re:Is the HTML bold tag too hard for you?

[foo12]

Meh. Shouldn't feed the troll, but --- no there is nothing wrong with HTML. In fact, I get paid quite well to use it.

Re:Is the HTML bold tag too hard for you?

[b]cool[b] I'm [i]really[i] glad you are such an [moron]html expert[moron] then.

Re:Is the HTML bold tag too hard for you?

Just one question: who the fuck cares?

Err, calling Jaguar "Puma" is very stupid...

"...the bloody Puma (er, Jaguar)..."

"Puma" is the codename for Mac OS X v10.1

What the fuck are you calling 10.2 by the codename of 10.1? Even correcting it afterward in your silly little brackets, you are still stupid.

it the turn around that matters

[johnjones]

what matters is the turnaround

like the SSL baug and KDE 1 day compared to MS 1 week and counting

the RPC only redhat and debian have fixes out everyone ese is fools they have some nice BSD people who know what they are doing

regards

John Jones

double standard...?

[pvera]

I *almost* posted a troll along the lines of "how come when MS releases a patch the day after a big release its suddenly such a big deal..." but I think Leimy nailed it in the head. Not only the CDs were pressed already and would cost too much to replace the first production run (guess *who* pays if that happens?) but they did fix them very quickly. When MS releases a patch like that it is usually way behind everybody else.

why so large?

Any ideas why it needs > 300 megs to install?
Is it the prebinding?

Re:why so large?

[foo12]

It's a known flaw in Apple's software install engine --- it always seems to list the minimum size as 300MB. I'm really surprised that they didn't fix that in Jag.

Swish to Apple

Dear Apple,

I am a big homosexual. I bought an Apple computer because of its well earned reputation for being "the" gay computer. Since I have become an Apple owner, I have been exposed to a whole new world of gay friends. It is really a pleasure to meet and compute with other homos such as myself. I plan on using my new Apple computer as a way to entice and recruit young schoolboys into the homosexual lifestyle; it would be so helpful if you could produce more software which would appeal to young boys. Thanks in advance.

with much gayness,

Father Randy "Pudge" O'Day, S.J.

Why is this news?

Is EVERY security update going to be headline news?
Why is it that apple seem to wait to bundle patches, rather than releasing them to fix one problem at a time?

Are they worried that Mac OS X will get a reputation for needing lots of patches?

It's the same as the 2002-08-02 update for 10.1.5

[mjs]

"This security update is for Mac OS X 10.2 (Jaguar) and applies the fixes contained in Security Update 2002-08-02 which was for Mac OS X 10.1.5." (Apple)

Patches

[Tsk]

I bet apple will release version 10.2.1 rela soon now because It's been almost A month since jaguar went GM.