Thread-topic: Remote Apple Events/Standard Additions Security Issue
User-agent: Microsoft-Entourage/10.1.0.2418
On 8/31/05 06:29, "Martin Orpen" <email@hidden> wrote:
>>> Scripters can easily get a list of active processes using remote
>>> apple events. I really don't think that so much information should be
>>> handed over without some form of authentication.
>>>
>>
>> I have to agree with Martin on this one...it should require
>> authentication
>> for every eppc connection, regardless of use.
>
> Yep. If Standard Additions is able to get that information without
> authentication then I'll bet it can be exploited further.
>
> Who wants to give casual callers an inventory of their running
> applications anyhow? The OS may be secure, but some of the
> applications you're running might not be.
OPSEC/COMSEC 101: Give away nothing. If the bad guys don't know what you're
doing, they can't exploit it. It's the same reason why you never allow
connection banners to display OS information.
--
John C. Welch Writer/Analyst
Bynkii.com Mac and other opinions
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
This email sent to email@hidden
