Mike ZigMeister
Registered: 09/02/01
Posts: 3404
Loc: SW Illinois
Looks like some folks are all too happy to have discovered a 'glitch' in OS X.<br>Is this a new one?<br><br><br><br><br>[color:blue][/b]Hodie mihi. Cras tibi.</font color=blue>[/b]
#348530 - 03/01/0809:09 PMRe: OS X Security Glitch?
[Re: Mike]
Anonymous
Unregistered
Looks like a new security update is on the horizon. I like the fact that someone needs 'physical access' to the machine in order to exploit this one. I'll lock my doors when I leave the house. ;-)<br><br>
#348531 - 03/01/0809:21 PMRe: OS X Security Glitch?
[Re: ]
MacBozo Nut Dood
Registered: 04/21/02
Posts: 17704
Loc: Pinellas Park, Florida
Yeah, low priority if it has to be physically done on the machine and not via the 'net or email script.<br><blockquote><font size=1>In reply to:</font><hr><p>someone with physical access to the computer can use multiple methods to extract the contents of the computer's DRAM chips.<p><hr></blockquote><p><br>Which means they'd have to be at your computer for several minutes at least, so the risk of discovery is rather high.<br><br><br><P ID="edit"><FONT SIZE=-1><EM>Edited by MacBozo on 03/01/08 04:26 PM (server time).</EM></FONT></P>
<blockquote><font size=1>In reply to:</font><hr><p>Which means they'd have to be at your computer for several minutes at least, so the risk of discovery is rather high..<p><hr></blockquote><p>What?<br><br>Thousands of laptops are stolen every single day. Which then gives the person all the time in the world to access the information.<br><br><br><br>Hey I'm an F'n Jerk!®
_________________________ Hey I'm an F'n Jerk!® twitter.com/SgtBaxter facebook.com/Bryan.Eckert
I'm waiting for some enterprising person to start selling a little fridge to keep your RAM fresh :)<br><br>[color:purple]A lopsided man runs best along the little side-hills of success<br>- Frank Moore Colby</font color=purple>
_________________________ If it's brokenless, don't suffix it...
#348535 - 03/02/0802:48 AMRe: OS X Security Glitch?
[Re: SgtBaxter]
MikeSellers
I'm not into titles
Registered: 05/11/02
Posts: 3738
Loc: Atlanta, GA
"Thousands of laptops are stolen every single day. Which then gives the person all the time in the world to access the information."<br><br>That's true even without this security glitch, unless you use FileVault or some other sort of encryption.<br><br><br><br>
<blockquote><font size=1>In reply to:</font><hr><p>That's true even without this security glitch, unless you use FileVault or some other sort of encryption.<p><hr></blockquote><p>Yes it is. <br><br>Actually, the biggest security flaw in OS X is that you can simply boot from an install disc and change the password giving you root access to the machine! So even if this glitch is fixed, it really doesn't make a damn bit of difference.<br><br>Of course, the description of this glitch was a bit over the top. Seriously, who is going to rip the DRAM chips out of the machine and install them into another machine?<br><br><br><br>Hey I'm an F'n Jerk!®<P ID="edit"><FONT SIZE=-1><EM>Edited by SgtBaxter on 03/01/08 11:06 PM (server time).</EM></FONT></P>
_________________________ Hey I'm an F'n Jerk!® twitter.com/SgtBaxter facebook.com/Bryan.Eckert
<blockquote><font size=1>In reply to:</font><hr><p>Actually, the biggest security flaw in OS X is that you can simply boot from an install disc and change the password giving you root access to the machine! So even if this glitch is fixed, it really doesn't make a damn bit of difference.<p><hr></blockquote><p>But not to the keychain, it has it's own password, that info is safe.<br><br>------> JD's Trivia game<br><br>------> MCF-MM Trivia game
<blockquote><font size=1>In reply to:</font><hr><p>But not to the keychain, it has it's own password, that info is safe.<p><hr></blockquote><p>Huh? No. Keychain access allows you to reset the password. There's even instructions at Apple on how to do it.<br><br>There is also a terminal workaround to reset the system keychain to the user keychain, so you have access to everything normally hidden like airport passwords. That has worked up through 10.4, I can't imagine it's any different in 10.5.<br><br>Please note these aren't really security flaws, you need to be able to change the password, because people forget them. The machine wouldn't be usable otherwise. But don't think that if someone has stolen your laptop that your info is safe because you've got great passwords and FileVault. It's not safe, no matter what platform you're running.<br><br><br><br>Hey I'm an F'n Jerk!®
_________________________ Hey I'm an F'n Jerk!® twitter.com/SgtBaxter facebook.com/Bryan.Eckert