Apple Releases Security and Xcode Updates 75
optikz writes "A security update is available in Software Update. 'Security Update 2003-11-04 addresses a potential vulnerability with the Terminal application in Mac OS X v10.3 and Mac OS X Server v10.3 that could allow unauthorized access to a system.'" sandrift writes "Software Update just popped up with Xcode Update 2003-11-03" Apple notes that "The Xcode update addresses an issue in the Xcode IDE that could potentially lead to data corruption or the loss of files particularly when source files contain illegal characters." Apple does not note, however, that Software Update will attempt to quit Terminal.app when installing the Security Update.
No 10.2? (Score:5, Funny)
What? They're not issuing an update for 10.0 or 10.1? It's a plot to force Mac users to upgrade! Apple is worse than Microsoft! Worse than Red Hat! That's why they'll never Succeed In The Enterprise!
OK, maybe not worse than Red Hat.
Re:No 10.2? (Score:2, Insightful)
Better yet... (Score:4, Funny)
Re:No 10.2? (Score:2)
What about File Vault? (Score:1)
Re:What about File Vault? (Score:3, Funny)
Isn't that true of maybe 75% of ALL computers?
Re:What about File Vault? (Score:1)
Re:What about File Vault? (Score:1)
Re:What about File Vault? (Score:1)
It most certainly is. It corrupts many files. I've lost half of my preferences because of File Vault. It also has a hard time recovering unused space.
Use it for more than 20 seconds next time.
Re:What about File Vault? (Score:1, Informative)
Something often asserted, but never actually observed under controlled conditions.
I've lost half of my preferences because of File Vault.
You are aware, are you not, that FileVault has nothing to do with preferences? Perhaps there's something going in inside the NSUserDefaults runtime environment. Ever considered that?
It also has a hard time recovering unused space.
"A hard time?" Not sure what you mean by that.
Use it for more than 20 seconds next time.
I've been using it f
Re:What about File Vault? (Score:1)
You are aware, are you not, that preferences are stored in files?
I lost my whole home folder to file vault. Even if I am too stupid to use, it it is UNACCEPTABLE that this would EVER happen with an option that is available to ANYONE on the computer. Think about it.
Re:What about File Vault? (Score:1)
Oh, well, that seals it.
Idiot.
I lost my whole home folder to file vault.
User error, no doubt.
Even if I am too stupid to use, it it is UNACCEPTABLE that this would EVER happen with an option that is available to ANYONE on the computer.
Yes. Computers should be unbreakable. The fact that they're not gives you the right--nay, the mandate--to complain righteously.
If it *might* have negative side-effects, then it needs to give a BIG F*C
Re:What about File Vault? (Score:1)
So? (Score:3, Insightful)
Is that such a big deal? I mean, if it's replacing the application, it's kinda going to have to quit it! Normally I like to quit as many running processes and applications before applying updates, just be sure.
Anyways, good to get an update so early. Haven't really noticed any of the problems with XCode, but it's reassuring knowing they're being addressed before I can encounter them!
Re:So? (Score:1, Informative)
Re:So? (Score:2)
It is if you weren't thinking about it, had some processes running in the Terminal, and didn't have the preferences set to not close without warning if you have processes running (which, IIRC, is the default).
It's not a huge deal, but it absolutely should warn you before doing it.
Re:So? (Score:1)
Mind... melting..
Re:So? (Score:2)
Re:So? (Score:2)
It could be sorta bad. It's not obvious that Terminal is being replaced - you might guess it's something like sshd or apache and simply not care enough to check - or you might be one of those unsophisticated users who say "Oh My GOD! Apple says to install a security update now, don't know what this means but it must happen ASAP!"- if you tell it to go ahead and install without checking you can lose a
Re:So? (Score:2, Informative)
Not at all. You've obviously never tried. What's loaded is loaded - you won't get any new NIBs if the old ones are removed - but you're perfectly capable of overwriting the disk image of a running process.
Re:So? (Score:1)
You would hope so, wouldn't you.
My wife was very nervous about operating my computer when she first started (an Amiga 2000). She was sure she would break something. I assured her it was very user-friendly, and she couldn't do anything to it that I couldn't fix (not a boast I would make today ;-) ).
She wrote her document. "What do I do now?"
I told her to save the document before printing. She dutifully saved the document
Re:So? (Score:2)
I mean, if it's replacing the application, it's kinda going to have to quit it!
Not necessarily, but it's a reasonable expectation. Of course, it's a reasonable expectation that Apple didn't provide. When I installed the update I don't recall it giving me any indication that it was terminal.app that was going to be modified, let alone that it would be trying to quit terminal for me. They should have indicated both. Most Apple security updates require delayed reboots to finish installation, IIRC, so I
Re:So? (Score:1)
It could be worse. (Score:2, Insightful)
Nothing gets your blook pumping like a minor patch rebooting the DC in the middle of the afternoon.
Note to self... 'finish' sometimes means restart.
Re:It could be worse. (Score:4, Insightful)
Shouldn't you have noticed that the patch forces a reboot when you applied it to one of your test systems to see if it would cause any problems?
Re:It could be worse. (Score:1, Insightful)
Re:It could be worse. (Score:1, Insightful)
Re:It could be worse. (Score:1, Insightful)
Patching should be a 1-4 minute process. Not ages of testing and re-testing.
Re:It could be worse. (Score:2)
Which would you rather do?
How do you think your boss will react if you chose option 2?
Re:It could be worse. (Score:3, Funny)
Corrected TROLL! (Score:2, Funny)
The above post does not represent the views of Ernstkom
Patch bug or PEBKAC? (Score:2, Funny)
Re:Patch bug or PEBKAC? (Score:3, Funny)
Re:Patch bug or PEBKAC? (Score:3, Informative)
Re:Patch bug or PEBKAC? (Score:1)
Re:Patch bug or PEBKAC? (Score:1)
wget --cache=off "http://swscan.apple.com/scanningpoints/scanningp
- proton
Re:Patch bug or PEBKAC? (Score:2)
Worked for me.
No, please, you go first (Score:4, Insightful)
Re:illegal characters? (Score:2, Funny)
"(C) SCO", I believe.
Re:illegal characters? (Score:1)
Really? My own tests suggested that it was "Netcraft confirms".
Re:illegal characters? (Score:1)
I like yours better.
Re:illegal characters? (Score:2)
my iMail app is broken (Score:1, Interesting)
Date/Time: 2003-11-04 21:55:29 -0800
OS Version: 10.3 (Build 7B85)
Command: Mail (/Applications/Mail.app/Contents/MacOS/Mail)
PID : 672
Thread: 5
Exception: EXC_BAD_ACCESS (0x0001)
Codes: KERN_PROTECTION_FAILURE (0x0002) at 0x00000000
Thread 0:
#0 0x900075c8 in mach_msg_trap (mach_msg_trap + 8)
#1 0x90007118 in mach_msg (mach_msg + 56)
#2 0x90191930 in __CFRunLoopRun (__CFRunLoopRun + 848)
Re: (Score:1)
Running the patch now (Score:2)
Patched, no problems. (Score:1)
And it doesn't require restart! (Score:2, Interesting)
Panther seems stable and very solid, even though it did deep six my ProTools, wouldn't let me use my Geforce4MX card, etc . So I figured I'd give it a shot. Oh yeah, and reading bpbond's post [slashdot.org] forced me to give it a go.
Much to my surprise, that the security patch didn't require a restart. To the best of my knowledge, this is a first. And, like the new installer, at the end it went
Re:And it doesn't require restart! (Score:3, Informative)
Doesn't adding "Port 23" to /etc/sshd_config do it? (not that I have tryed, but a quick scan of hte man page says it will... oh, you probbably have to HUP sshd). Or are you asking how to get the client to use another port (-p 23 I think).
Good luck.
Re:And it doesn't require restart! (Score:1)
I have sshd_config set with Port 23, and Apache running mod_proxy. On the client (Windows side) I use putty.exe to use ssh over 23 and then set up port forwarding to Apache. This enables me to do all my "bad" surfing - Slashdot, MacNN, Macintouch - etc., all encrypted and below the radar of our contet
Re:And it doesn't require restart! (Score:1)
SCSI problems - whose fault? (Score:3, Interesting)
Apple is blaming Adaptec, Adaptec is blaming Apple. Since the driver was built into OS X, who should I go after? I hope this isn't another, "We no longer support SCSI".