given some of the issues folks are having with safari and some other third
party programs, I am sharing the following two articles.
It is not apple itself, but the extras, often constructed to work better
with windows, that are causing allot of this.
still the bit about safari bugs me.
Kare
http://jeremiahgrossman.blogspot.com/2010/07/i-know-who-your-name-where-you-work-and.html
I know who your name, where you work, and live (Safari v4 & v5)
Right at the moment a Safari user visits a website, even if they've
never been there before or entered any personal information, a malicious
website can uncover their first name, last name, work place, city,
state, and email address. Safari v4 & v5, with a combined market browser
share of 4% (~83 million users), has a feature (Preferences > AutoFill >
AutoFill web forms) enabled by default. Essentially we are hacking
auto-complete functionality.
http://arstechnica.com/security/news/2010/07/apple-the-new-world-leader-in-software-insecurity.ars
Apple the new world leader in software insecurity
By Peter Bright
Apple has displaced Oracle as the company with the most security
vulnerabilities in its software, according to security company Secunia.
Over the first half of 2010, Apple had more reported flaws than any
other vendor. Microsoft retains its third-place spot. Secunia has
tracked security vulnerabilities and issues advisories since 2002,
producing periodic reports on the state of software. Together, the top
ten vendors account for some 38% of all flaws reported.
Though this does not necessarily mean that Apple's software is the most
insecure in practice---the report takes no consideration of the severity
of the flaws---it points at a growing trend in the world of security
flaws: the role of third-party software. Many of Apple's flaws are not
in its operating system, Mac OS X, but rather in software like Safari,
QuickTime, and iTunes. Vendors like Adobe (with Flash and Adobe Reader)
and Oracle (with Java) are similarly responsible for many of the flaws
being reported.
To illustrate this point, the report includes cumulative figures for the
number of vulnerabilities found on a Windows PC with the 50 most
widely-used programs. Five years ago, there were more first-party flaws
(in Windows and Microsoft's other software) than third-party. Since
about 2007, the balance shifted towards third-party programs. This year,
third-party flaws are predicted to outnumber first-party flaws by
two-to-one.
Secunia also makes a case that effectively updating this third-party
software is much harder to do; whereas Microsoft's Windows Update and
Microsoft Update systems will provide protection for around 35% of
reported vulnerabilities, patching the remainder requires the use of 13
or more updating systems. Some vendors---Apple, Mozilla, and Google, for
example---do have decent automatic update systems, but others require
manual intervention by the user.
--
You received this message because you are subscribed to the Google Groups
"MacVisionaries" group.
To post to this group, send email to macvisionar...@googlegroups.com.
To unsubscribe from this group, send email to
macvisionaries+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/macvisionaries?hl=en.
