toggle

AAPL Stock: 497.67 ( -11.79 )

'Month of Apple Bugs' to begin January 1st

updated 10:50 am EST, Wed December 20, 2006

'Month of Apple Bugs'


The anonymous security researcher who identifies himself only by his online alias of 'LMH' has vowed to begin a 'Month of Apple Bugs' following his 'Month of Kernel Bugs,' which took place last month. Beginning January 1st, 2007 the researcher and his partner Kevin Finisterre -- another security expert who has reported several Mac OS X security holes to Apple -- will publish one security flaw per day in Mac OS X or in Apple's own applications for the month of January, according to one Washington Post blogger. The anonymous researcher refused to provide affected vendors advance notice prior to posting the kernel bugs on his website in November, and has vowed to do the same during the month of Apple bugs. "Right now, many OS X users still think their system is bulletproof," LMH said in an interview via instant message. "Some people are interested on making it look that way."


by MacNN Staff

print
email
(30)

TAGS :

 troubleshooting

Related Articles

Recent Articles

toggle

Comments

  1. bsaxton

    Fresh-Faced Recruit

    Joined: Jan 2000

    0
    12/20, 11:30am | report spam | Reply |

    That's nice...

    ...maybe this guy would like to also publish lists of holes in national national security systems... you know, teach the government a lesson...

  1. bobolicious

    Fresh-Faced Recruit

    Joined: Aug 2002

    0
    12/20, 11:31am | report spam | Reply |

    How destructive...

    ...a methodology is that...?

    No I don't think my mac is bulletproof - far from it - but there is a sense that few care...

    While I applaud the effort to identify issues & pressure for quick fixes it would seem making them public domain with NO advance warning would only serve to encourage malice & degrade the general mac community security perhaps drastically in the short term...

    Please give the vendors a chance to provide fixes before announcing such bugs & potentially making computer use a needlessly more dangerous & exasperating experience than it already can be for many...

    And yes I use a firewalled router, encrypted wifi, nightly backups, don't open unknown emails, remote host my website & have my firewalls on...

  1. jonbwfc1

    Fresh-Faced Recruit

    Joined: Nov 2003

    0
    12/20, 11:35am | report spam | Reply |

    Hmm..

    ""Right now, many OS X users still think their system is bulletproof," LMH said in an interview via instant message. "Some people are interested on making it look that way.""

    And there are an equally large (possibly larger) number of people who would stand to make a lot of money should Mac OS users be panicked into buying the same anti-virus/spamware etc. apps that windows users have to.

    Interesting thing anonymity isn't it? Means you're never vulnerable to being accused of having an ulterior motive.

    Jon

  1. Tim_s

    Fresh-Faced Recruit

    Joined: Jul 2006

    0
    12/20, 11:36am | report spam | Reply |

    maybe..

    he should send them to Apple first, then if nothing is done about in a reasonable amount of time, then release the bugs in hopes of getting Apple's attention.

    I like the fact that there are people with the know-how to find problems, but not notifying the company first smacks of childishness. Maybe if they publish fixes along with the bugs, it would be better.

    I'm not a violent person, but some people need to be slapped in the face for acting out like this.

  1. technocoy

    Fresh-Faced Recruit

    Joined: Oct 2002

    0
    12/20, 11:38am | report spam | Reply |

    this still...

    irks me, since this guy pushes the publicity in order to give people a bad impression of OS X... In that he's failing the public since it hides the fact that OS X is still the FAR better and secure OS when compared to certain other offerings.

    Maybe someone should do a blog, 30,000 bugs in Windows in a month, and post 1000 bugs a day for a month.

    Seriously, the guy slams OS X under the guise of making things better for the consumer.

    If that was his intention he would at least do the responsible thing and announce these flaws to the vendors before he shouts it out to the world of eager PC users anxious to attack OS X to "show us uppity Mac users".

    Get a brain. moron.

  1. Monstermind

    Junior Member

    Joined: May 2000

    0
    12/20, 11:54am | report spam | Reply |

    Interested ON?

    Just sayin'.

  1. ::maroma::

    Addicted to MacNN

    Joined: Jan 2002

    0
    12/20, 11:59am | report spam | Reply |

    lame

    this guy is lame. he's doing this for his own advancement. if he were truly interested in helping people he wouldn't punish Apple or any other company he's doing this to by not giving them the info he has so they can fix it promptly. instead he's making it into a big production where he's the center of attention, even though he's staying "anonymous".

    i would have much more respect if he would at least give the companies the info before publishing it on his site. he's a loser with too much time on his hands.

  1. ricardogf

    Fresh-Faced Recruit

    Joined: Jan 2003

    0
    12/20, 12:07pm | report spam | Reply |

    Yawn

    This nerd hacker was discredited before, and will be discredited once more...his "findings" were little more than vapor, and his anonymity is just a sick sign of his unwillingness to show up as a man...

    In other words, he is just another wannabe "hacker" with no positive agenda...and he is bordering on illegal activities just for his own fake publicity and the benefit of the moronic Windows community. Ridiculous.

  1. Gepard

    Fresh-Faced Recruit

    Joined: Sep 2000

    0
    12/20, 12:19pm | report spam | Reply |

    One comment

    Here is a comment on the previous interview with the guy that was published on November 11 here http://blogs.securiteam.com/index.php/archives/730 ================ Wait, is this the guy who discovered, that the FreeBSD mount(8) man page, which explicitly says that “It is possible for a corrupted file system to cause a crash”, is, in fact, right, and then published an advisory about something that is already known, documented and not related to security (http://projects.info-pull.com/mokb/MOKB-03-11-2006.html)? Wow. Impressive. Comment by trasz — November 12, 2006 ========================

  1. ADeweyan

    Fresh-Faced Recruit

    Joined: Mar 2004

    0
    12/20, 12:46pm | report spam | Reply |

    Bulletproof?

    Apart from wishing the use of term "Bulletproof" when describing anything other than vests or glass was banned, I don't think many Mac users actually think that's the case -- and no knowledgeable Mac users.

    MORE "Bulletproof" than a certain other easily-exploited operating system, maybe, but not by any means immune to attack or exploit.

    The only people I hear talking about this are PC'ers who have taken offense at the idea that regular people can actually enjoy their computer if the OS treats them with dignity.

    It's a classic move of the offended -- posit a straw man with an impossibly extreme point of view, then demonstrat how impossible that point of view is.

Show More Comments

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

10 Most Read

Recent Reviews

Logitech Cube

The world of mice could often be described charitably as stagnant: it's an endless sea of ergonomic shapes that assume you're sitting ...

NewerTech and Targus USB Hubs For Gifts

A useful holiday present to resolve an ongoing frustration is a multi-port hub. Whether as a stocking stuffer, Chanukah present, or an ...

X-Rite ColorMunki Photo

Color calibration is the art of tweaking your monitor so that the colors represented on screen better match real life and your printer ...

toggle

Most Commented

10 Most Discussed

 

Popular News