Apple Posts Security Update 2002-11-21

← Back to Stories (view on slashdot.org)

Apple Posts Security Update 2002-11-21

Posted by pudge on Friday November 22, 2002 @03:26PM from the shmecurtiy dept.

Znonymous Coward writes "Apple has released Security Update 2002-11-21 for Mac OS X 10.2 (Jaguar) via the Software Update utility. The update 'fixes potential vulnerabilities introduced in BIND, the domain server and client library software package from Internet Software Consortium (ISC), that is shipped with Mac OS X and Mac OS X Server. BIND version 8.3.4 addresses the recently-discovered potential vulnerabilities where an unauthorized person may disrupt the normal operation of the DNS name service. BIND is not activated by default on Mac OS X or Mac OS X Server.'"

7 of 36 comments (clear)

Min score:

Reason:

Sort:

Isn't there any better apple news? by ivan256 · 2002-11-22 15:45 · Score: 2, Insightful

Really, anybody who cares about MacOS X security updates finds out about them as soon as the software update window pops up automatically telling you to download it. In fact, I'd wager that the person who posted this found out that exact way. So, my question is why is there a slashdot story for every MacOS update when everybody who cares (Read:people with macs) find out automatically anyway? There's got to be some real news to post...
1. Re:Isn't there any better apple news? by pi+radians · 2002-11-22 16:26 · Score: 5, Insightful
  
  Maybe this can be used as a venue for those who want to discuss the update.
  
  Actually there are a number of accounts that this update causes more harm than good. If this is your main site for Mac news it would be then seen as an excellent place to talk about the new security update.
  
  It may not be news, but to every Mac user here it is something that will affect them.
  
  --
  
  sin(6cos(r)+5A)
2. Re:Isn't there any better apple news? by qengho · 2002-11-22 16:27 · Score: 5, Insightful
  
  why is there a slashdot story for every MacOS update
  
  Because not every MacAddlebrained Drone leaves Sofware Update in the default check-every-day mode. For example, I have no interest in Airport updates. Slashdot is actually the most up-to-date notification service I know of, bless its heart.
3. Re:Isn't there any better apple news? by Znonymous+Coward · 2002-11-22 16:59 · Score: 3, Insightful
  
  I think stories like this provide a good way for people to get the word out if there are problems with updates.
  
  It usually takes MS and Apple a few days to fess up with their mistakes. The /. crowd keeps everyone in the loop in the meantime (like saying, "Hey, don't install service pack 3").
  
  --
  Karma: The shiznight, mostly because I am the Drizzle.
Rebooting by Znonymous+Coward · 2002-11-22 16:52 · Score: 2, Insightful

Comparison:

Apple's software updater forces me to reboot all the time.
Microsoft makes me reboot after installing a service pack (and every time I "look" at my network settings).
Redhat's software updater only "asks" me to reboot after a Kernel upgrade is installed.

I wonder if you have to reboot with software update in Apple's OS X server?

--
Karma: The shiznight, mostly because I am the Drizzle.
Re:Pathetic? by Ster · 2002-11-22 19:35 · Score: 4, Insightful

BIND is not activated by default on Mac OS X or Mac OS X Server.

So, unless you intentionally activate it, its really a non-issue. And if you know enough to activate it, then you probably know enough to be up to date.

-Ster
Re:Pathetic? by Steve+Cowan · 2002-11-25 05:03 · Score: 3, Insightful

Why did Apple distribute the old and buggy BIND version 8 with their OS when version 9 was already out at the time they released?
If Apple waited for every latest and greatest component to become available (and tested it) prior to releasing OS updates, they would never release anything.
This is particularly true of something like BIND, which is not enabled by default anyway!