Slashdot Mirror
Snow Leopard Missed a Security Opportunity
CWmike writes "Apple missed a golden opportunity to lock down Snow Leopard when it again failed to implement fully a security technology that Microsoft perfected nearly three years ago in Windows Vista, noted Mac researcher Charlie Miller said today. Dubbed ASLR, for address space layout randomization, the technology randomly assigns data to memory to make it tougher for attackers to determine the location of critical operating system functions, and thus makes it harder for them to craft reliable exploits. 'Apple didn't change anything,' said Miller, of Independent Security Evaluators, the co-author of The Mac Hacker's Handbook, and winner of two consecutive 'Pwn2own' hacker contests. 'It's the exact same ASLR as in Leopard, which means it's not very good.'"
Been on /. before, was about as much astroturfing by proxy as it is now. There are no security silver bullets so stop lambasting as if this is a particularly important one. Apple can fuck up an awful lot, security wise, and they'll still be light years ahead of micro"security was not a priority"soft.
You americans have an odd way of evaluating your presidents. Then again you have an odd way of picking them as well.
I followed you until you said "p0wn", at which point you became just another internet putz. Try harder next time.
I want to delete my account but Slashdot doesn't allow it.
In all fairness, generally, we evaluate presidents by comparing them to Ronald Reagan. Since Baraq Obama is an affirmative action President, we had to lower the standards. That's why we compare him to Jimmy Carter.