Slashdot Mirror


Month of Apple Bugs - First Bug Unveiled

ens0niq writes "The first bug (a Quicktime rtsp URL Handler Stack-based Buffer Overflow) of the Month of Apple Bugs has been unveiled — as previously promised — by LMH and Kevin Finisterre. From the FAQ: 'This initiative aims to serve as an effort to improve Mac OS X, uncovering and finding security flaws in different Apple software and third-party applications designed for this operating system. A positive side-effect, probably, will be a more concerned (security-wise) user-base and better practices from the management side of Apple.'"

4 of 240 comments (clear)

  1. And a negative side effect? by Anonymous Coward · · Score: -1, Flamebait

    "A positive side-effect, probably, will be a more concerned (security-wise) user-base and better practices from the management side of Apple"

    Or instead of learning from their mistakes and working to better their product line, they could just sue the guy into the ground and cover it all up like they usually do.

  2. Apple Vs. Security Researchers by porkchop_d_clown · · Score: 1, Flamebait

    Apple has had poor relations with security researchers for years. Partly it's because of the smug attitude of many Apple users - who assume that because they don't get attacked their OS is more secure; but part is also the researchers themselves.

    The flame wars over the airport card exploits is a good example - first, the researchers used a 3rd party card which meant it had little to do with OS X problems, which created a number of he-said-she-said arguments. As I understand it, the airport exploit was (is still?) real, but the arguments created a lot of ill-will on both sides.

  3. Re:I have a dumb question..... by xxdesmus · · Score: -1, Flamebait

    I agree. Apple will go ahead and try and sue these guys because they need to maintain some semblance of smugness now don't they?

    What other company sues their users for pointing out bugs? Oh right, Apple will prove to be the first.

  4. Re:Occam's Razor by porkchop_d_clown · · Score: -1, Flamebait

    Snort.

    Sonny, I write device drivers for a living, on Linux and on Mac. I assure you, the Mac isn't more secure.

    You might want to do a little research into epidemiology and on the economics of hacking in the 21st century if you want to understand why no one has targeted Macs.