Get started with App.net.

  Sign up now  
maclemon
    @grahamperrin Oh wow, that’s typically Apple. Not a media covered issue, gets ignored. I had Keychain issues where you could unauthenticated empty all keychains or selected items with a single call. Reported in 10.4. during beta. Finally fixed in 10.7.
    maclemon
      @grahamperrin That was just an example. There’s a lot of horrible bugs in Server.app Apple doesn’t care to fix. Unauthenticated delete of course being an excellent attack vector for DoS/Data loss. Will you file RDARs on this?
      maclemon
        @grahamperrin “Ignore ownership” is a volume setting, not a fileserver setting. There’s also a LOT really broken with SMB2 and SMB3 currently. Where Users can’t write to their own home directory over the network, etc. I filed > 60 bugs against Server 5…
        maclemon
          @grahamperrin @mikebeas @bmike I expect ZEVO to be vulnerable since it doesn’t properly apply ACLs and especially Group ACLs. This has been fixed in OpenZFS since 1.5.x. All sorts of fun to be had when volumes are set to ignore ownership.
          maclemon
            @ferebee That’s why I’m on FreeBSD. Mature ZFS, Jails are like Zones or vice versa. Didn’t need to touch any Linux containers yet. No systemd goes near my boxes and yes, I’m sad for Debian in that regard. It served me well in the few cases I used Linux.
            maclemon
              @ferebee That’s pretty much what I thought as well. I’m not directly affected since I’ve moved my stuff to FreeBSD by now since it suits my workloads better than Illumos/Solaris based systems. My SunBlade still runs OpenSolaris 10 though. :-)
              maclemon
                #tvOSSecurity Apple released #tvOS 9.2.1 for tv 4th generation fixing 33 security issues. https://support.apple.com/en-us/HT206564
                maclemon
                  #MacSecurity Apple released Safari 9.1.1 (for 10.9.5, 10.10.5, and 10.11.5) fixing 7 security issues! https://support.apple.com/en-us/HT206565
                  maclemon
                    #MacSecurity Apple released OS X El Capitan 10.11.5 and Security update 2016-003 (for 10.10.5, 10.9.5) which fixes 67 security issues! https://support.apple.com/en-us/HT206567
                    maclemon
                      #iOSSecurity Apple released iOS 9.3.2 for 44 devices, which fixes 39 security issues. Details: https://support.apple.com/en-us/HT206568
                      maclemon
                        #iOSSecurity Apple released iOS 9.3.2. no Detailed Security Info available yet. Image [photos.app.net]
                        maclemon
                          #MacSecurity Xcode 7.3.1 fixes 2 critical git vulnerabilities. Available only for El Capitan. https://support.apple.com/en-us/HT206338
                          maclemon
                            #iOSSecurity Apple confirmed that the security content of the recently released iOS 9.3.1 is identical to 9.3. https://support.apple.com/en-us/HT206225
                            maclemon
                              #SafariSecurity #OSXSecurity Apple release Safari 9.1 for OS X 10.9.5/10.10.5/10.11.4 fixing 12 security issues. https://support.apple.com/en-us/HT206171
                              maclemon
                                #OSXSecurity Apple released OS X El Capitan 10.11.4 and Security Update 2016-002 for 10.9.5/10.10.5 fixing 59 CVEs! https://support.apple.com/en-us/HT206167
                                maclemon
                                  #XCodeSecurity Apple release Xcode 7.3 which fixes 3 security vulnerabilities including a subversion issue. https://support.apple.com/en-us/HT206172
                                  maclemon
                                    #AppleWatchSecurity Apple release watchOS 2.2 which fixes 34 security vulnerabilities. https://support.apple.com/en-us/HT206168