Slashdot Mirror

← Back to Stories (view on slashdot.org)

Mac Developer Mulls Zero-day Security Response

Posted by CowboyNeal on from the in-the-nick-of-time dept.

1.6 Beta writes "Landon Fuller, the Mac programmer/Darwin developer behind the 'month of Apple fixes' project, plans to expand the initiative to roll out zero-day patches for issues that put Mac OS X users at risk of code execution attacks. The former engineer in Apple's BSD Technology Group has already shipped a fix for a nasty flaw in Java's GIF image decoder and hints an an auto-updating mechanism for the third-party patches. The article quotes him as saying, 'Perhaps [it could be] the Mac OS equivalent to ZERT,' referring to the Zero-day Emergency Response Team."

2 of 94 comments (clear)

  1. Re:Unnecessary. by landonf · · Score: 2, Informative

    I wholeheartedly agree with the importance of notifying the vendor -- unfortunately, that's not always done. The point of "0-day" patches is to provide a security option where none currently exists.

    --
    http://plausible.coop
  2. Too late! by LanMan04 · · Score: 2, Informative

    He's going to port apt-get to OS X? He's too late.
    --
    With the first link, the chain is forged.