toggle

AAPL Stock: 439.66 ( 0 )

http://www.macnn.com/articles/04/09/16/apple.fixes.ichat.flaw/

Apple fixes iChat flaw with security update

updated 06:50 pm EDT, Thu September 16, 2004

 

Apple fixes iChat flaw


Apple today posted a security update to fix a flaw in iChat, Apple's free instant messaging application that is bundled with Mac OS X and offers compatiblity with Americal Online's AIM software. Apple said , released via the Mac OS X Software Update, "delivers a number of security enhancements and is recommended for all Macintosh users. This update includes the following component: iChat." Apple days that remote iChat participants can send "links" that can start local programs if clicked. The company has modified it so that "links" of this type will open a Finder window that displays the program instead of running it. The update is available for Jaguar iChat 1.0 or Jaguar iChat AV 2.0 users as well as Panther (iChat AV 2.1) users. [updated]


by MacNN Staff

Post tools:

TAGS :

 troubleshooting

Related Articles

Recent Articles

toggle

Comments

  1. fds

    Fresh-Faced Recruit

    Joined: Sep 2004

    0
    09/16, 07:28pm | report spam | Reply |

    restart required

    Why does every second Apple update require a restart? I seriously doubt iChar could not be updated without a restart. It's not like it changes the kernel or anything. At this point Microsoft is starting to look better in avoiding unnecessary restarts every time.

  1. Sebastien

    Mac Enthusiast

    Joined: Apr 2000

    0
    09/16, 07:56pm | report spam | Reply |

    Freakin' reboots!

    Why the h*** does Apple make a reboot mandatory for every freaking upgrades, no matter how small?????? The *ONLY* thing that should demand a restart is a low-level (read: Kernel) file update. I mean, geez, is iChat compiled in the kernel or something?!?!??

    P.S. I'm with you fds; just now read your post.... :)

  1. ecrelin

    Junior Member

    Joined: Oct 2000

    0
    09/16, 08:54pm | report spam | Reply |

    core services initialize

    on reboot pinheads. Not rebooting leaves the existing insecure version running. Would you rather be whining because the services running were compromised because the update didn't make you reboot? You could probably make some convoluted scripts that selectively stop and restart services but now your not only making the install potentially more insecure and prone to failure but way more complicated than it needs to be for what? your uptime stats? wise up

  1. beverson

    Mac Enthusiast

    Joined: Oct 1999

    0
    09/16, 09:02pm | report spam | Reply |

    why the hostility?

    Maybe there are really good reasons (like the ones suggested by ecrelin) for rebooting every time. But even if it's best to reboot after such updates, it is sort of annoying — and not for uptime. After 4 years (has it been that long?) in OS X, I consistently leave more windows/documents/apps open or running than I ever did before. Because I can. This means that when an update comes along, I usually wait at least a couple days to finally install it because I don't want to have to close my Safari windows and lose the pages I'm meaning to read, etc. Sure I could bookmark them temporarily, but why?

    Is it a huge deal? No. Ultimately worth it to have a more secure system? Yes. Minor annoyance I'd rather Apple find a way around? Yes.

  1. Sebastien

    Mac Enthusiast

    Joined: Apr 2000

    0
    09/16, 10:53pm | report spam | Reply |

    Re:core services initiali

    How could "selectively stop and restart services but now your not only making the install potentially more insecure and prone to failure" possibly happen??? You update files, you restart the service; simple and elegant, which Linux has managed to do.

    But then again I bet you reboot your system anytime you want to re/start Apache or SSH on your system.

  1. LouZer

    Fresh-Faced Recruit

    Joined: Nov 2000

    0
    09/17, 12:25am | report spam | Reply |

    Re: why

    How could "selectively stop and restart services but now your not only making the install potentially more insecure and prone to failure" possibly happen??? You update files, you restart the service; simple and elegant, which Linux has managed to do.


    Part of the problem is you think its a service. Its not, its a framework that's being updated. Frameworks can be used by any/all applications. So, for example, if you install a security update to Safari, its actually probably updating webCore. But you can't just re-initialize it, because it would require you to re-run any app using WebCore, which would include Safari, HelpViewer, OmniWeb, and anything else that can use the framework. So you'd still have to restart certain apps to get the framework working.

    And, of course, you can tell it requires a restart before you install it, so if you don't want to reboot, don't install it. Gee, tough.

  1. kennethmac2000

    Senior User

    Joined: Apr 2000

    0
    09/17, 11:02am | report spam | Reply |

    Log out?

    Why do Apple software updates never utilize the option of a forced log out rather than a forced restart?

  1. Nostromo

    Fresh-Faced Recruit

    Joined: Oct 2001

    0
    09/17, 12:39pm | report spam | Reply |

    crybabies...

    "Why the h*** does Apple make a reboot mandatory for every freaking upgrades"

    translation:

    "I'm a needle-dicked UNIX geek who can't get a date and has to rely on bragging on my UPTIME to impress people."

    Jesus -- you'd swear from all the whining that Apple was making you BUY the security update for $100.

    It's just a RESTART, people! Big deal.

    And if your workflow is SO disrupted by a simple restart, then maybe you should re-evaluate how you work -- that doesn't sound too efficient.

  1. Rosyna

    Forum Regular

    Joined: Aug 2001

    0
    09/17, 01:01pm | report spam | Reply |

    restart is for novice use

    it is there because a lot of people don't realize that iChat doesn't do the work, iChatAgent does. and iChatAgent may still be running when you quit and relaunch iChat. Easiest way is to force a reboot.

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

MaxUpgrades MaxConnect for 2006-2008 Mac Pro

Nobody outside of Cupertino's privileged bunch knows the future of the Mac Pro line for sure. Despite Apple's reluctance to tell us wh ...

Brother HL-3170CDW LED Printer

We've mentioned before that we are far from a paperless society. For now, at least, there are tasks that require a piece of paper for ...

HTC One

It is hard to overstate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming decline ...

toggle

Most Commented

 

Popular News