Do you even have to ask?
link via boingboing
Exploit 3
May 24, ’04
10:14 PM
Well, this whole topic has been beaten to death, so I will attempt to minimize my contribution.
Apple’s Security Update 2004-05-24 eliminates the need for my Help Viewer hack (see below). However it doesn’t close all of the URI scheme holes.
For details on that topic I’ll send you over to John Gruber at Daring Fireball.
Right! Now [...]
Exploit 2:
May 18, ’04
10:13 AM
The Mac net is a buzz with this news: There is a vulnerability in OS X that is potentially dangerous. When given a correctly structured (and possibly malicious) URL, Safari (and other browsers) can respond by asking the Help Viewer application to execute an AppleScript on a volume that is not the startup disk. When [...]
Exploit:
May 18, ’04
9:00 AM
Fix:
sudo chmod 444 /System/Library/CoreServices/Help\ Viewer.app/Contents/MacOS/Help\ Viewer
Break again:
sudo chmod 755 /System/Library/CoreServices/Help\ Viewer.app/Contents/MacOS/Help\ Viewer
Untill something better comes along
Micro nostalgia
May 15, ’04
5:20 PM
I bought my first "computer" in 1979; an RCA Cosmac VIP. It had a CDP1802 processor running at a staggering 1.7MHz and came with a whopping 1 KBytes of RAM, a video port (that required an hour of hand coding to initialize), and a hex keypad.
Fast-forward 25 years — David Ruske has released an 1802 [...]