Apple release Security Update 2010-007 update for Mac OS X 10.5 operating systems

Posted by:
Date: Friday, November 12th, 2010, 05:27
Category: News, security, Software

On Wednesday, Apple released Security Update 2010-007, bringing the same security patches included in the recent Mac OS X 10.6.5 release to Macs running 10.5 Leopard client or server versions.

Per Macworld, the more prominent fixes included in the update is a fix for a bug in Apple Type Services which could allow the downloading of a maliciously crafted font file to lead to arbitrary code execution. That bug, originally caught by security firm Core Security, was similar to a vulnerability in Apple’s iOS that allowed hackers to jailbreak devices running that software. Apple patched the flaw in an iOS update

In addition to fixing the font bug, 2010-007 brings an updated version of Adobe’s Flash Player plug-in (numbered 10.1.102.64) which patches a number of security vulnerabilities, some of which could lead to arbitrary code execution. Patches are also included for a number of holes in QuickTime, Time Machine, Safari RSS, Quick Look, and several of OS X’s other underlying systems.

The Leopard client version of Security Update 2010-007 is a 240.74 megabyte download while the server version is a 448.10 megabyte download. If you’re running an eligible system, the relevant update should appear via Mac OS X’s Software Update feature.

If you’ve tried the update and noticed any major changes, please let us know.

Apple releases Safari 5.0.2 update

Posted by:
Date: Wednesday, September 8th, 2010, 05:21
Category: News, Software

safarilogo.jpg

Amidst yesterday’s updates and product releases, Apple released Safari 5.0.2, the newest version of its web browser. The new version, available here (or via Mac OS X’s Software Update feature), sports the following fixes and changes:

- Fixes an issue that could prevent users from submitting web forms.

- Fixes an issue that could cause web content to display incorrectly when viewing a Google Image result with Flash 10.1 installed.

- Establishes an encrypted, authenticated connection to the Safari Extensions Gallery.

Safari 5.0.1 requires Mac OS X 10.6.2 (under Mac OS X 10.6) or later to install and run and is available for free.

Apple promises fix for web-based jailbreak flaw in iOS-based devices, declines on specific date

Posted by:
Date: Thursday, August 5th, 2010, 05:28
Category: iPad, iPhone, iPod, News, Software

The tug-of-war between Apple and the iPhone hacker community continues as Apple has vowed to fix a flaw that allows its iOS-based device to be jailbroken via the Safari web browser.

Per CNET an Apple spokesperson said, “We’re aware of this reported issue, we have already developed a fix and it will be available to customers in an upcoming software update.”

Apple declined to say when the update would be available.

If you’ve jailbroken your iOS-based device recently and have any feedback about the experience, let us know what happened and how it went.

Recently unearthed iPad configuration policies provide additional evidence to forthcoming camera

Posted by:
Date: Tuesday, August 3rd, 2010, 06:43
Category: iPad, News

You’re hankering for a camera on the iPad and it may be forthcoming.

Per AppleInsider, iPad management profile policies available to corporate users include the capability to disable use of its camera, providing evidence of future intent to include a camera on upcoming models.

Apple’s configuration profile tools for iOS devices include a variety of settings and restrictions that companies can impose to regulate how the devices are used and to configure services such as VPN and wireless networking access or email, calendar and directory services.

These policies can also force strong passwords and set security features such as the number of times a password attempt can fail before the device wipes its data. Similar to parental controls, the policy settings can also be used to block access to features such as the iTunes Store, Safari, YouTube, or the use of its camera.

While iPhones do have cameras to disable, the current iPad lacks this. However, among the profiles specifically included in its iPad documentation, Apple notes the ability to restrict camera use on the iPad.

Prior to launch, it was widely rumored that the iPad might include a camera. When it shipped, Apple only provided the ability to connect to external cameras through its Dock connector, either via USB or using an SD Card reader adapter.

API support for camera, flash, and zoom functions were discovered in developer builds of the iPad-only iOS 3.2 in February.

While those APIs may have been added as part of software development work performed to support iPhone 4, Apple also posted job listings for a “Performance QA Engineer, iPad Media” which stated, “Build on your QA experience and knowledge of digital camera technology (still and video) to develop and maintain testing frameworks for both capture and playback pipelines.”

Taken together, it appears likely that future versions of iPad will incorporate a camera, most likely a front-facing unit intended to support FaceTime. That video conferencing feature is currently limited to iPhone 4, but Apple plans to make it a widespread standard among mobile devices.

Stay tuned for additional details as they become available.

iPhone Dev Team releases web-based hack for iPhone 4 handset

Posted by:
Date: Monday, August 2nd, 2010, 04:22
Category: Hack, iPhone, News

The iPhone Dev Team raised their hand on Sunday, releasing the first “jailbreak” for the iPhone 4, a browser-based exploit that allows users to run unauthorized code. However, some reported that the modification results in broken MMS and FaceTime functionality.

According to AppleInsider, “comex,” a member of the iPhone Dev Team, released the hack through a website, jailbreakme.com. Users can visit the site in their iPhone browser to begin the jailbreaking process.

The software modification is the first release for Apple’s latest handset hardware, the iPhone 4. Some users reported that the jailbreak managed to break FaceTime and MMS functionality on the device.

Comex announced via a Twitter post that he was able to reproduce the issues, and is working on a fix. The latest jailbreak does not work with iPads running iOS 3.2.1.

Unlike previous jailbreaks, which required users to run software on their Mac or PC and tether their iPhone to their computer, the latest hack is done entirely within the Safari browser. Users simply visit the URL to begin the process, which modifies the iOS mobile operating system found on the iPhone, iPod touch and iPad.

The iPhone 4 jailbreak comes less than a week after the U.S. Library of Congress officially made it legal for users to jailbreak their iPhone to run unauthorized software. The government approved the measure as an exemption to a federal law which prevents the circumvention of technical measures that keep users from accessing and modifying copyrighted works.

The jailbreak process, which also voids Apple’s warranty of the handset allows users to run software not approved by Apple, which has no plans to allow users to install third-party applications downloaded from outside its sanctioned App Store. Hackers have created their own custom applications (many free, and some for purchase) from an alternative storefront known as Cydia.

Jailbreaking can also be used to unlock a phone, allowing it to be used on carriers that do not have access to the iPhone.

In addition to allowing access to legitimate third-party software, both free and paid, through services like Cydia, jailbreaking can also be used to pirate App Store software, one major reason why Apple has fought the practice.

Stay tuned for additional details as they become available and if you decide to jailbreak your iPhone 4, please let us know how it goes.

Apple releases Safari 5.0.1 update

Posted by:
Date: Wednesday, July 28th, 2010, 06:16
Category: News, Software

safarilogo.jpg

Amidst yesterday’s updates and product releases, Apple released Safari 5.0.1, the newest version of its web browser. The new version, available here (or via Mac OS X’s Software Update feature), sports the following fixes and changes:

- More accurate Top Hit results in the Address Field.

- More accurate timing for CSS animations.

- Better stability when using the Safari Reader keyboard shortcut.

- Better stability when scrolling through MobileMe Mail.

- Fixes display of multipage articles from www.rollingstone.com in Safari Reader.

- Fixes an issue that prevented Google Wave and other websites using JavaScript encryption .libraries from working correctly on 32-bit systems.

- Fixes an issue that prevented Safari from launching on Leopard systems with network home directories.

- Fixes an issue that could cause borders on YouTube thumbnails to disappear when hovering over the thumbnail image.

- Fixes an issue that could cause Flash content to overlap with other content on .www.facebook.com, www.crateandbarrel.com, and other sites when using Flash 10.1.

- Fixes an issue that prevented boarding passes from www.aa.com from printing correctly.

- Fixes an issue that could cause DNS prefetching requests to overburden certain routers.

- Fixes an issue that could cause VoiceOver to misidentify elements of webpages.

Safari 5.0.1 requires Mac OS X 10.5.8 (under Mac OS X 10.5) or Mac OS X 10.6.2 (under Mac OS X 10.6) or later to install and run and is available for free.

Apple releases iOS 4.0.1 for iPhone, iOS 3.2.1 for iPad, hunts down long-standing bugs

Posted by:
Date: Friday, July 16th, 2010, 04:03
Category: iPad, iPhone, News, Software

Following up on rumors, Apple has released iOS 4.0.1 via iTunes. Per MacNN, the update makes just a single major change, that being improved accuracy in iPhone signal display. The company recently promised a software fix in light of reception issues, though it’s now believed the problem is traceable to hardware. The download is only available for the iPhone 3G, 3GS and 4.

For iPad owners, Apple has meanwhile posted iOS 3.2.1. The firmware solves several issues, most notably trouble with Wi-Fi connections. It also corrects a glitch with PDF attachments in Mail, and two video bugs: one causing videos to freeze, and another hampering the official iPad Dock Connector to VGA Adapter. The one feature addition is Bing support for Safari search.

To download and install the updates, which each weigh in at over 300 megabytes, attach your iPhone or iPad to your computer, open iTunes, select the device and search for an update. The process will occur as per usual.

Apple is scheduled to hold a full iPhone 4 press conference today. Stay tuned to the PowerPage for additional details as they become available.

And if you’ve noticed any major changes or would like to offer feedback on this, let us know.

How-To: deactivate Network Services to improve iOS device battery life

Posted by:
Date: Thursday, July 8th, 2010, 04:31
Category: How-To, iPad, iPhone, iPod, News

Although the iOS 4 software update has been lauded as improving battery life for most users, some are finding the improvements lacking. Per the Apple Toolbox Blog, one source of this may be overuse of the Location Services feature which can accompany checking Push notifications, and having many open Safari windows open.

It now appears that overactive location services usage can result in poor battery life. Specifically, apps that use location services in the background can quickly drain the battery.

The post offers the following steps for resolving this and hopefully upping your iOS device’s battery life:

“To check location services usage on an app-by-app basis, navigate to Settings > General > Location Services.

Turn location services off for all applications, then turn them back on for desired apps one by one or in groups. Via this procedure, you can identify which app’s use of location services is draining battery.

Alternatively, you can temporarily turn off location services altogether and check for increased battery life.”

How-To: Work around Safari 5.0 launch crashes

Posted by:
Date: Wednesday, June 9th, 2010, 05:39
Category: How-To, News

safarilogo.jpg

Since installing Safari 5.0 on Monday, my Macs have yet to catch fire and the basset hound has yet to start waltzing across the living room carpet with my cat.

This may not be the case for everyone.

Per CNET, after installing version 5.0 of the Safari browser, a few users are reporting the program crashes whenever they try to open it. Even after trying some general troubleshooting steps the browser still crashes, which could mean something small has been overlooked, but also could mean there was a problem with the installation.

The cool cats over there have offered the following advice:

“To start the troubleshooting, first determine if the problem is account-specific by either going to another existing account, but also by creating a fresh user account to try. Even if other existing accounts have similar problems, using a fresh one will ensure no modifications have been made.

If the problem only happens in one or a few accounts, then it is likely the problem is because of a faulty setting or plug-in that resides in the local account. As a first step, try removing Safari’s preferences, which are located in the /username/Library/Utilities/ folder and are called “com.apple.Safari.plist.” Remove that file from its folder and try relaunching Safari.

You might also try clearing your Web caches, which can be done with Safari using the “Reset Safari” feature if you manage to get it open; however, if not then you can use a cache cleaning program like OnyX or Snow Leopard Cache Cleaner to remove the browser caches.

If this does not clear the problem, next try launching Safari without plugins enabled. To do this, go to the Safari preference file mentioned above and open it with a text editor. Locate the “WebKitPluginsEnabled” key and change it from “true” to “false” so it looks like the following:
WebKitPluginsEnabled

This should prevent Safari from loading plugins, so save the file and relaunch Safari to test it out. This setting can be set in the “Security” section of the Safari preferences; however, if the program will not launch then this is an alternative way to disable the plugins.

While disabling the plugins should keep Safari launching in a bare state, you can also try removing plugins manually. These are located in the following folders, so move all of them from these folders to another location and try relaunching the program.

/Library/Internet Plug-Ins/
/username/Library/Internet Plug-Ins/

If the program launches after doing this, then test each plugin (or small groups of plugins) by moving them back one by one and relaunching the browser each time.

Lastly, with plugins removed from the global library, try booting into Safe Mode and launching Safari from a fresh user account. If this still does not work, then download and reinstall Safari again, especially if you used Software Update to apply the previous update. A faulty installation can sometimes be remedied by reinstalling the program without using updaters (similar to reapplying a system “Combo” updater when OS updates cause bizarre problems. Before doing this you might consider running general maintenance procedures on your system and install it when booted into Safe Mode to ensure minimal interference from other system processes.”

If you’ve seen this issue on your end or have found a fix or workaround of your own, please let us know.

Apple releases Safari 5.0 web browser

Posted by:
Date: Tuesday, June 8th, 2010, 03:08
Category: News, Software

safarilogo.jpg

Amidst yesterday’s Worldwide Developers Conference announcements, Apple finally released Safari 5.0, the newest version of its web browser. The new version, available here (or via Mac OS X’s Software Update feature), sports the following fixes and changes:

- Safari Reader: Click on the new Reader icon to view articles on the web in a single, clutter-free page.

- Improved Performance: Safari 5 executes JavaScript up to 25% faster than Safari 4. Better page caching and DNS prefetching speed up browsing.

- Bing Search Option: New Bing search option for Safari’s Search Field, in addition to Google and Yahoo!.

- Improved HTML5 support: Safari supports over a dozen new HTML5 features, including Geolocation, full screen for HTML5 video, closed captions for HTML5 video, new sectioning elements (article, aside, footer, header, hgroup, nav and section), HTML5 AJAX History, EventSource, WebSocket, HTML5 draggable attribute, HTML5 forms validation, and HTML5 Ruby.

- Safari Developer Tools: A new Timeline Panel in the Web Inspector shows how Safari interacts with a website and identifies areas for optimization. New keyboard shortcuts make it faster to switch between panels.
- Smarter Address Field: The Smart Address Field can now match text against the titles of webpages in History and Bookmarks, as well as any part of their URL.
- Tabs Setting: Automatically open new webpages in tabs instead of in separate windows.

- Hardware Acceleration for Windows: Use the power of the computer’s graphics processor to smoothly display media and effects on PC as well as Mac.

- Search History with Date: A new date indicator in Full History Search shows when webpages were viewed.

- Top Sites/History Button: Switch easily between Top Sites and Full History Search with a new button that appears at the top of each view.

- Private Browsing Icon: A “Private” icon appears in the Smart Address Field when Private Browsing is on. Click on the icon to turn off Private Browsing.

- DNS Prefetching: Safari looks up the addresses of links on webpages and can load those pages faster.

- Improved Page Caching: Safari can add additional types of webpages to the cache so they load quickly.

- XSS Auditor: Safari can filter potentially malicious scripts used in cross-site scripting (XSS) attacks.

- Improved JavaScript Support: Safari allows web applications that use JavaScript Object Notation (JSON) to run faster and more securely.

Safari 5.0 requires Mac OS X 10.5.8 (under Mac OS X 10.5) or Mac OS X 10.6.2 (under Mac OS X 10.6) or later to install and run and is available for free.