SecurityHave you ever had to call for tech support on a product only for them to ask you for your serial number or registration code or when you bought it? Have you ever visited a website where you needed to enter a user name and password to access some feature only to return at a later date and not remember what information you provided?
iKeeper enables you to quickly enter, view, or modify internet and product information and quickly search through your records to find the information you need, when you …
June 2, 2001 •
2 min read
SecurityOperating System Affected: MacOS 8.6 and below
Software: ALL versions of FileGuard
Threat: medium
The computer protection software “FileGuard” is renowned for its excellent ability of keeping people off your box. While playing around with the latest version, I started playing with the logs. I got to fooling around with file names and realized that you can change the name of a file without it being logged.
Take this scenario. Someone gets onto your computer and they are restricted from all of your Internet applications. They bring a copy of “ferret” (http://jindel.cjb.net), a notorious …
June 2, 2001 •
1 min read
SecurityFileGuard Security Advisory – Disengage 1.0
OS 9.1 Ready, Now fully being developed and supported by Intego
Information
FileGuard has been a trusted program amongst Mac users who have searched for a way to keep their computers and data secure, in most recent news Intego purchased the software and will continue to make improvements and develop the software for both Macintosh and PC platform. FileGuard now fully works with Mac OS 9.1 and has many bug fixes as well as feature advancements.
Brief rundown on the functionality of FileGuard 4.0. Allow multiple users to …
June 2, 2001 •
9 min read
SecurityBrickHouse (Mac OS X Firewall Configuration)
BrickHouse was developed by Brian Hill to ease the process of configuring MacOS X’s built-in Firewall.
His hard work has paid off; hundreds of OS X owners use his program. Changing Firewall settings manually without a GUI can be tedious and confusing for unexperianced users; this program removes those barriers.
By using BrickHouse to configure your computer’s firewall, you can more effectively keep unauthorized users from gaining access to your computer via your internet connection.
BrickHouse makes it easy to use your firewall to guard against denial of …
June 2, 2001 •
2 min read
SecurityInformation
Empower Professional is a comprehensive security system, chosen by many large corporations, and featuring multi-level/multi-user access controls, enabling management of both folders and programs.
Whats New in 5.6.2:
Resolved conflict with the Mac OS 8.6 USB Iomega Driver
Resolved conflict TechTool, Protection version 2.5.1 Control Panel
Fixed freeze during Shutdown or Restart with File Sharing enabled
The Trial Remover is now built in to Trial software to make it faster and easier to evaluate
Other minor bug fixes and fine tuning
Views
Empower Pro has long realized that efficient, transparent data security plays a vital role in the …
June 2, 2001 •
2 min read
SecurityInformation
Virex has been a leader in Anti-Virus solutions for the MacOS. This is the first beta for Mac OS X and only contains the command line scanner, we are assured in the near future we will see the familiar Virex interface.
Because this is a early beta there is no charge for this product. This Beta has been designed to run only on the Released version of OSX. It is not recommend running this product on previous releases of OS X, including the Public Beta of OSX, as this product uses …
June 2, 2001 •
1 min read
SecuritySymantecs’ Norton AntiVirus (NAV) 7 has become a trusted name amongst Macintosh users for virus protection over the past few years. SecureMac put this program through our five lock testing and the results came out rather interesting.
During installation we were greeted with a screen asking us what type of protection we wanted, none, moderate, most, and too much. After install we rebooted and started the application. The program is easy to follow with a nice classic navigation.
After installation it is recommended you run the LiveUpdate feature that will download the …
June 2, 2001 •
3 min read
SecurityInformation
All Apple Powerbook have the option of setting up a security control panel, making it so when you boot you must enter a password before it mounts the drive. Good security for a laptop!
Views
Good security for those LapTop Users. At lease this program can fool an idiot!
Insecurity
Security Breaches in the Password Security Control Panel: Owners of Powerbook have the option of using the Control Panel “Password Security”. With Password Security turned on the owner of the PowerBook can password-protect his/her computer. This involves a password dialog asking for a password …
June 2, 2001 •
4 min read
SecurityInformation
Easy, Foolproof protection. DiskLock sets up much faster than other security programs. Instead of having to select each file, you can choose entire folders with a single click. And DiskLock is virtually impossible to bypass–it loads before the system software, so unauthorized users can’t start up your system, even from a floppy disk.
IDE Drive Support: Supports IDE drives as well as Macintosh-standard SCSI drives
Multiple User Support: Set up as many users as you want, with an individual password and access levels for each.
DiskLock loads before the system software, so unauthorized …
June 2, 2001 •
2 min read
SecurityInformation
At Ease popularity has kind of died down. I remember schools using it but now they don’t seem to. It’s a product I never liked. Found it rather insecure. Millions of ways to hack around it.
Views
The New Version, Well You need to email me with information on it. I couldn’t find any on Apples website, so if you run it, Email me! I guess this product would be good for Jr High or Elementary schools.
Insecurity
At Ease Files + Hacks + Fixes:
Research Papers/Instructions:
Open Other peoples files is a email submitted from …
June 2, 2001 •
2 min read
SecurityEmail encryption problems should be solved in Sonata
by Dennis Sellers, dsellers@maccentral.com
June 15, 1999, 9:45 am ET
If you’re using a free Mac email application, you inherently have a lack of secure encryption as Andrew Jung, a computer science student at Camosun College (Victoria BC, Canada), recently discovered. Jung was using Outlook Express 4.5 on the family iMac when he came upon what he described a “disturbing bug.”
Jung attempted to use the “Change Current User” menu item of Outlook Express to access his personal email account (three separate email accounts were on …
June 2, 2001 •
4 min read
SecurityInformation
NetBus is a remote administration tool for the Windows Operating system. When this program was first released it was known as a ‘hacker tool’ where a user can gain remote access to a computer with the program installed. This program is like the CDC Back Orifice application commonly known as BO2K.
Virus protection vendors categorized this program as a trojan horse but many insist it is a legit remote administration tool. NetBus is on SecureMac.com so Macintosh users will know their computer CAN NOT be infected by this program. However a …
June 2, 2001 •
1 min read
SecurityPassword weakness in Internet Config in MacOS
What is Internet Config?
From Internet Config FAQ: “The Internet Configuration System was designed to make your life easier by reducing the number of times which you need to enter your Internet preferences into the various preferences dialogs of all your Internet applications.
For example, currently you need to enter your Email address into many common
Macintosh Internet applications, for example Eudora, NewsWatcher and Anarchie.
The goal of the system was to get each of these applications to get this information
from one common place and to give you …
June 2, 2001 •
6 min read
SecurityInformation
Euroda is a widely supported Email client for both Macs and PC’s. Pro Version supports multiple accounts and personalities.
Views
Eudora has grown a lot from user suggestions. They have a nice BETA SITE where you can beta test their PRO version.
Download Versions
Download new Beta Version of Eudora PRO
Download FREE Eudora Light Version or Purchase PRO Version
More Info
QUALCOMM can be reached by email, website or call them directly at 1 800 238 3672
Insecurity
This mail client has been pretty secure. There has been a little exploit known that will show a password for …
June 2, 2001 •
2 min read
SecurityInformation
Let me clarify something for all of you. BackOrifice, NetBus – Those are PC trojans. They will not break your macintosh. The tools described are to control a PC infected with BackOrifice from a MACINTOSH. Yes a Mac. Don’t fear Macs don’t have registries and other fun things.
Views
Some people actually use BackOrifice for their Windows computers for Free, control of the remote the computer. In nature Back Orifice is a trojan. It will let a user connect to it remotely and do odd things. Like have access to files, screenshots, …
June 2, 2001 •
1 min read
SecurityConnections and Protections
Cable and DSL Connections and Security Measures
What type of connection do I have?
Two new remote access technologies are rapidly growing – cable modems and Digital Subscriber Line (DSL) modems/routers. Cable Modems are a shared media. This means that you share a common wire with other people in your neighborhood (see figure one). As more people gain access, the more traffic that is generated over that single wire. Both telco and cable companies are constantly working to increase the amount of bandwidth and service area available to their customers. …
June 2, 2001 •
6 min read
SecurityInformation
John Copeland, a professor at Georgia Tech, noticed his computer sending packets when he was not conducting any traffic. This Mac Attack effects computers running MacOS 9 with a internet or network connection. A FAQ Page has been setup to help you understand the situation.
FIX
After a lot of complaints from MacOS 9 Owners, Apple released a correct solution for the denial of service problems. Open Transport 2.6 is the fix, Only for Mac OS 9; Mac OS 8.6 for PowerMacintosh G4, iBook, and iMac (Slot-loading) computers. Apple says addresses DHCP …
June 2, 2001 •
2 min read
SecurityGrouchySmurf is the first public release of an ICMP broadcast attack for the MacOS. Last night the application was released by Freaks Macintosh Archives a hacker related website for the macintosh community. They wrote a review/press release on the application to hype it. Now it is online and available for download. The ICMP broadcast attack will be explained in details further in this document.
Were not going to try to hide the bad uses of this program. This review is to inform you of the new software released and what damages …
June 2, 2001 •
4 min read
SecurityInformation
Do you know that every single postscript file that you print on a Macintosh using the Print To File function actually secretly puts your email address in the file? Pretty scary, isn’t it?
Problem
Apple LaserWriter driver embeds the user email address within the postscript.
Product Effected:
All postscript file printed via print to file in MacOS.
(Tested on 8.6 and 9.0)
Download
You can download Strip A Post from:
(Strip A Post is a nice little utility that removes that piece of personal information from those postscript files)
SecureMac – 1.0 version
Jake Luck Homepage
Closing Notes
The Author Jake Luck …
June 2, 2001 •
1 min read
SecurityMac OS X Single User Mode Root Access – CodeSamurai
Forward
There’s always the constant battle between user-friendliness and security. Apple has known about this vulnerability for some time now; and back in the days of OpenStep, a patch to that OS was released to fix this problem. Now is the era of Mac OS X, and even though that old OpenStep patch won’t work for OS X, Apple could still easily release a similar patch, or better yet, a permanent fix that will be forever installed by default.
It is argued that …
June 2, 2001 •
5 min read