Problems with Security Update 2008-006
Problems with Security Update 2008-006
- Subject: Problems with Security Update 2008-006
- From: Alec Carlson <email@hidden>
- Date: Thu, 09 Oct 2008 10:58:15 -0500
- Thread-topic: Problems with Security Update 2008-006
Title: Problems with Security Update 2008-006
Need some help from Apple...
From: http://support.apple.com/kb/HT3137
System Configuration
CVE-ID: CVE-2008-2312
Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11
Impact: A local user may obtain the PPP password
Description: Network Preferences stores PPP passwords unencrypted in a world readable file, accessible to any local user. This update addresses the issue by storing PPP passwords in the system keychain when the password is changed. This issue does not affect systems running Mac OS X v10.5 or later.
This change affects anyone who uses the System Configuration Framework to create PPP network Services (especially me)...
With this update installed, what is the correct way to save the PPP passwords in the Keychain and link them to the PPP service dictionary ?
How can I programmatically tell if the Security update has been applied or not since I now have to support both the old password mechanism AND the new one ???
Thanx -
Alec Carlson
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macnetworkprog mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden