Slashdot Mirror
Mac OS X 10.2.8 Available
Transfan76 writes "The 10.2.8 Update delivers enhanced functionality and improved reliability for the following applications, services and technologies: Audio, Bluetooth, Classic compatibility, Finder, Graphics, LDAP, Power Management, Safari, and FireWire and USB device compatibility. The update also provides updated security services and includes the latest Security Updates." Does this have the update to ssh?
Now, this update is NOT FOR G5 OWNERS. That said, does this update basically bring all G3s and G4s to the same as G5s (bugfix and feature/improvement wise, except for 1 or 2 very new ones), or is this above and beyond (since I know that G5s shipped with a newer version of OS X). Thanks.
Comment forecast: Bits of genius surrounded by a sea of mediocrity.
OK, so how many of you Apple owners saw this, and reached instantly for the Software Update with glee?
:)
.sig - ... And Mac OS X just gets out of the way, letting you do what you wanted to do...
And how many thought the same when the latest Windows Bloat Patch ^W^WUpdate came along? not many? thought as much
oh the joys of being a proud owner or a 12" PB.....
hmm maybe I need to update my
I have been waiting to get infected with the blaster worm for several weeks now. Will this uodate open a security hole to allow that to happen?
Dude, I've installed one on multiple TiBooks and iBooks, if you had to "take the entire thing apart" you did something wrong.
On a TiBook:
You remove eight screws, a piece of metal, and it should click in easily. Albeit it is even easier in an iBook, where you don't even have to deal with screws.
Integrate Keynote and LaTeX
Given how frequently Apple updates OS X, I'm never going to have an impressive uptime. The last update was what about 2 weeks ago?
Win a signed Stephen Carpenter ESP Guitar from the Deftones: http://def-tag.com/?r=0008781
Amazingly, three people all posted the answer to SSH within 1 minute, but you were first!
Congratulations! You win 4 points of karma!
The other players each lose a point each for being redundant. But they do get a copy of the home game!
Otherwise no problems with 10.2.8 so far, but must say I miss my invisible dock background.
FWIW, my XBench results under 10.2.6 were 69.99. Under 10.2.8 I have 76.3.
.x update the changes to the underlying OS have much greater license.
A nice little improvement even if it is a synthetic benchmark it's nice to see Apple striving for optimisation. Hopefully this mindset will be seen in Panther to a much greater degree seeing as being a full
-Nex
This sig has been deprecated.
A couple of people have reported to XLR8 Your Mac that their M-Audio Revolution 7.1 cards no longer work after the update. One mentions that M-Audio knows about it and is working on a fix.
An odd thing was that it reset my monitor settings back to 16bit colour ('Thousands'), so you may want to watch out for that. Aqua does such a good job of dithering you probably wouldn't even notice at first.
Another odd thing was that my display went a little funky when doing the cross-fading desktop pictures just a second ago. Fixed itself after the transition was complete, no idea what that's about.
If you're superstitious like me don't forget to do the Repair Permissions trick - its the new Rebuild Desktop - although I had no issues there either.
One last thing, be prepared to have your frickin Keychain pestering you for the next week....
If Jesus wants me it knows where to find me.
So here's my $50,000 question. Since the newest G4s were supposed to actually have USB 2.0 chipsets in them, but the software was throttling them back to 1.1, does this update magically turn the late G4 MDDs into USB 2.0 machines? CC
The cross-fading desktops feature has a new bug (on a 12" PB anyway) where the secondary monitor - in my case a Sony 17" CRT - screws up the transition effect.
The PowerBook is running at 1024x768/32bit on its main display, and 1280x1024/32bit on the secondary (NOT mirroring).
During the crossfade the first picture suddenly appears to squish to have the horizontal resolution, pushed to the left, and the palette gets munged (purple). It snaps back to normal after the fade but it ain't pretty.
If Jesus wants me it knows where to find me.
APPLE-SA-2003-09-22 Mac OS X 10.2.8
Mac OS X 10.2.8 is now available. It contains fixes for recent
vulnerabilities in:
OpenSSH: Mac OS X 10.2.8 contains the patches to address CVE
CAN-2003-0693, CAN-2003-0695, and CAN-2003-0682. On Mac OS X
versions prior to 10.2.8, the vulnerability is limited to a denial
of service from the possibility of causing sshd to crash. Each
login session has its own sshd, so established connections are
preserved up to the point where system resources are exhausted by
an attack.
To deliver the update in a rapid and reliable manner, only the
patches for CVE IDs listed above were applied, and not the entire
set of patches for OpenSSH 3.7.1. Thus, the OpenSSH version in
Mac OS X 10.2.8, as obtained via the "ssh -V" command, is:
OpenSSH_3.4p1+CAN-2003-0693, SSH protocols 1.5/2.0, OpenSSL
0x0090609f
Sendmail: Addresses CVE CAN-2003-0694 and CAN-2003-0681 to fix a
buffer overflow in address parsing, as well as a potential buffer
overflow in ruleset parsing.
fb_realpath(): Fixes CAN-2003-0466 which is an off-by-one error in
the fb_realpath() function that may allow attackers to execute
arbitrary code.
arplookup(): Fixes CAN-2003-0804. The arplookup() function caches
ARP requests for routes on a local link. On a local subnet only,
it is possible for an attacker to send a sufficient number of
spoofed ARP requests which will exhaust kernel memory, leading to
a denial of service.
INSIDE THE MACHINE oooo... SCARY! Watch your fingers now, something might get up and bite you!
Computer guy eh? Let me ask you a question....
I was writing a paper, on my PC when it went beepbeepbeepbeepbeepbeepbeep, and like half of my paper was gone!
What do you think the problem is?
Here's the list of official changes to security in 10.2.8 (read it for yourself at security-announce@apple.com):
APPLE-SA-2003-09-22 Mac OS X 10.2.8
Mac OS X 10.2.8 is now available. It contains fixes for recent vulnerabilities in:
OpenSSH: Mac OS X 10.2.8 contains the patches to address CVE CAN-2003-0693, CAN-2003-0695, and CAN-2003-0682. On Mac OS X versions prior to 10.2.8, the vulnerability is limited to a denial of service from the possibility of causing sshd to crash. Each login session has its own sshd, so established connections are preserved up to the point where system resources are exhausted by an attack.
To deliver the update in a rapid and reliable manner, only the patches for CVE IDs listed above were applied, and not the entire set of patches for OpenSSH 3.7.1. Thus, the OpenSSH version in Mac OS X 10.2.8, as obtained via the "ssh -V" command, is: OpenSSH_3.4p1+CAN-2003-0693, SSH protocols 1.5/2.0, OpenSSL 0x0090609f
Sendmail: Addresses CVE CAN-2003-0694 and CAN-2003-0681 to fix a buffer overflow in address parsing, as well as a potential buffer overflow in ruleset parsing.
fb_realpath(): Fixes CAN-2003-0466 which is an off-by-one error in the fb_realpath() function that may allow attackers to execute arbitrary code.
arplookup(): Fixes CAN-2003-0804. The arplookup() function caches ARP requests for routes on a local link. On a local subnet only, it is possible for an attacker to send a sufficient number of spoofed ARP requests which will exhaust kernel memory, leading to a denial of service.
--
$tar -xvf
10.2.7 was a G5-only version of Mac OS X as a stop-gap measure before Apple finishes 10.3.6 426)
Apple says (http://docs.info.apple.com/article.html?artnum=8
Don't use the 10.2.7 CDsthat come with the G5 macs on normal macs, it's g5 only.
Wow! I went to that URL, and realized something pretty crazy, if you enter older article numbers, you can see some cool historical stuff. For example: Apple II+: Mini-Assembler (1 of 2) or Apple III: Emulation Mode--Controlling Bit 8 of the RS-232 Port. Kinda cool, though not exactly the topic of this article.
Powerbook G4 1ghz
Has anyone out there *ever* updated Windows and expected it to *speed up* your computer?
I look at Windows update with dread - not knowing what evil new EULA, spyware, bugs and exploits await every trip.
Software Update is something that Apple got *so* right. People *want* to run it. Hell, I check twice a day! Do most Windows users even KNOW about Windows Update??
Another reason I just gave Apple my money.
I called Apple and they said that that wasn't covered under Applecare! I have a paper due, and have 16.5 million colors to put back! Your problems don't amount to a hill of beans, Mister!
Yep, according to this technote it's *the* update to ssh:
Sapere aude!
Oddly enough, the release notes for the new update say it updates 10.2.6 and 10.2.7 to 10.2.8, and then says you can't use it on a G5.
Don't blame me; I'm never given mod points.
Wasn't there a post when 10.2.6 came out regarding installing these updates without having to bring the whole system down for a restart. It was a lot of work, and essentialy did the same thing as a restart but it kept the uptime clokc running
T Money
World Domination with a plastic spoon since 1984
That misses the point entirely.
I recommended purchase of a Mac in our office recently, due to the fact it could handle both the graphic design and web/mail serving requirements. My boss knows about Jaguar, but his opinion is that he shouldn't have to upgrade only a year after purchasing the Mac - he has a point, surely?
I was going to mod you up in sympathy but I decided to reply instead when I saw the flamebait at the end of your post. I agree fully that the installation procedure for the airport card is not trivial, and is a blemish on Apple's otherwise very good hardware record. It could really have been made simpler or at leats be done for free at an Apple store. Technically challenged people (most computer users fit into this category) should not be made to do this.
But Apple has made these cards default in the newer Powerbooks AFAIK and you could have installed a wireless PC card with the same ease as you would have on a PC laptop. Apart from this I have never seen a PC laptop with an even close attention to detail and engineering quality of an Apple laptop, with the possible exception of IBM's Thinkpads, which are quite solid. Dell and Compaq's offerings are poorly engiineered in order to save money and it shows.
Anyway, who cares. If something drives you to rage, then I think you have other problems...
The Belkin USB 2.0 PCI card I put in my Dual-867 PowerMac G4 now works at USB 2.0 speed. I can actually transfer files to my Maxtor external hard drive in a reasonable amount of time. Too bad I already bought a Firewire drive to use instead.
Apple pioneered the use of USB and Firewire. It's a shame to see they dropped the ball on USB 2 until now.
Discussed further here. Respect to Andrew McPherson for coming up with a workaround: make a backup of /System/Library/Extensions/AppleGMACEthernet.kext before upgrading, and restore it afterwards. If you've already upgraded, follow the link for more info.
Ceterum censeo subscriptionem esse delendam.
Very small fonts in Safari render MUCH better now. They are actually legible. Must be an improvement to the Webcore. I can now read the positions on my Yahoo! Fantasy Football roster!
Oh, by the way, the "easily accessed" slot is on the side, just where it is on a PC, and accepts standard wireless cards. The Airport card is for people who don't want to be bothered unplugging their wireless card every time they want to to put something else in that slot.
>Dumbass, Sir, to you....
TOPIC
This software updates Mac OS X 10.2.6 or 10.2.7 to version 10.2.8.
Important: This update works only with Power Mac G3- and G4-based desktop and portable computers, including iMac, eMac, and iBook. This update does not work with Power Mac G5 computers.
As another poster alluded to, USB 2.0 != high speed.
USB 2.0 is a new protocol standard, it happens to have two version (IIRC), standard and fast. You CAN impliment USB 2.0 and only support the older/slower transfer speed.
For whatever reason, Apple has decided to not use (perhaps not license) the "USB 2.0 (HighSpeed)" logo.
Article X: The powers not delegated... by the Constitution...are reserved...to the people
Link to downloadable installer
well in the past an update for 10.1 has come out a few days after one for 10.2 (though not always) so lets just wait and see before passing judgement huh?
One Week isn't that bad of an update time. I am sure that after they make the change they will check it out to make sure it works on all the platform that OS X runs on. As well configure it to work with OS X settings, Put the files in a way so it can be sent for an update. OpenSSH people have developed their product for BSD and Linux so checking the update takes less time. of OS X Apple probably needs to tweak it a little. And check to make sure it works. Plus I think it was an issue that they had an upgrade planned anyways so just wait a couple of days and allow for one reboot except for 2.
If something is so important that you feel the need to post it on the internet... It probably isn't that important.
See Apple's Security page:
Mac OS X 10.2.8
OpenSSH: Addresses CAN-2003-0693, CAN-2003-0695, and CAN-2003-0682 to fix buffer management errors in OpenSSH's sshd versions prior to 3.7.1
sendmail: Addresses CAN-2003-0694 and CAN-2003-0681 to fix a buffer overflow in address parsing, as well as a potential buffer overflow in ruleset parsing.
fb_realpath(): Fixes CAN-2003-0466 which is an off-by-one error in the fb_realpath() function that may allow attackers to execute arbitrary code.
arplookup(): Fixes CAN-2003-0804. The arplookup() function caches ARP requests for routes on a local link. On a local subnet only, it is possible for an attacker to send a sufficient number of spoofed ARP requests which will exhaust kernel memory, leading to a denial of service.
Why does everything have to be installed as a system upgrade? There should be seperate updates for SSH, Sendmail, System, ... and then you can choose what to install. This makes it easier for people with 10.1 also. As they can just install the SSH and/or Sendmail without needing 10.2 for the System update. Seems pretty basic to me.
Apple has apparently improved CSS in Safari. The Complex Spiral Demo previously mentioned via the Mac Browser Smackdown, which in turn was mentioned on slashdot, now renders correctly in Safari. (Previously Safari was coloring black the parts which weren't in the blue box and were off the screen when the page finished loading.)
(As a side note, I couldn't load the Ars Technica article without turning off Javascript. It kept sending me to some crappy ad that was supposed to redirect me back to the article but didn't.)