• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: [OT] When will Apple learn?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [OT] When will Apple learn?

  • Subject: Re: [OT] When will Apple learn?
  • From: has <email@hidden>
  • Date: Mon, 9 May 2005 18:55:52 +0100
Stephen Jonke  wrote:

>>In fact, if you turn off that idiotic "Open Safe Files" option in Safari,
>>this isn't a real problem at all.
>
>It may be idiotic, but it sure is convenient, and so far there has been no real exploit of it, so perhaps it isn't so idiotic after all? I really can't see the harm in decompressing .sit files automatically, for instance. What are you going to do after you download (and don't decompress automatically) a .sit file? Throw it in the trash? Why did you bother downloading it in the first place then?

Unfortunately the road to Hell is paved with good intentions. As (e.g.) Microsoft could easily tell you, except they'd be litigated to death for it.

I don't think folk are concerned about any single step so much as the particular combination. Merely _visiting_ a webpage can automatically download, unpack and install a widget of unknown providence in a single fell swoop. (Heck, I was running IE5 on OS10.2 and it still made me jump!:)

In addition, uninstalling that widget - assuming you're technically savvy enough that such activity rings warning bells - is actually harder, since it apparently requires the user to trawl through ~/Library to find and remove the relevant package and restart Dashboard to complete the elimination process.

Add in the fact that one of the biggest malware vectors isn't even software-based but simple social engineering (e.g. "Would you like to see Anna K.'s knockers now? [Yes|No]"), and it's not surprising folk are getting at least a little antsy about this.

At the very least it needs urgent clarification, including and not only from Apple.

HTH

has
--
http://freespace.virgin.net/hamish.sanderson/
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Applescript-users mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: [OT] When will Apple learn?
      • From: Stephen Jonke <email@hidden>
  • Prev by Date: Re: [OT] When will Apple learn?
  • Next by Date: Re: [OT] When will Apple learn?
  • Previous by thread: Re: [OT] When will Apple learn?
  • Next by thread: Re: [OT] When will Apple learn?
  • Index(es):
    • Date
    • Thread