Leopard's Firewall Faulted by Security Researchers
Leopard's Firewall Faulted by Security Researchers
by , 3:10 PM EDT, October 30th, 2007
Researchers at Heise Security have noted that, even after an upgrade from Tiger to Leopard, if the firewall was turned on in Tiger, it is turned off in Leopard, according to Robert Vamosi's C|Net Blog on Tuesday.
In addition, even if the Leopard firewall is once again turned on, some incoming connections will be allowed, determined by Leopard by default.
Jürgen Schmidt, editor in chief at Heise Security said, for example, his team was able to query the NetBIOS Naming Service on the network even with the firewall on. His team also had a problem filtering UDP packets in Leopard [in the firewall].Heise Security also faulted Apple for not including the latest version of Samba which has bug fixes. It's the same version as in Tiger.
TMO notes that Apple typically avoids confusion by keeping things simple for novices but offers a UNIX architecture that allows professionals to implement whatever they need. Also, in Leopard, the firewall has been moved from the Sharing System Preference to Security.
Warning: include(/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/extension.inc) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 108
Warning: include() [function.include]: Failed opening '/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/extension.inc' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 108
Warning: include(/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/common.) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 110
Warning: include() [function.include]: Failed opening '/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/common.' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 110
Warning: include(/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/includes/bbcode.) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 112
Warning: include() [function.include]: Failed opening '/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/includes/bbcode.' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 112
Fatal error: Call to a member function sql_query() on a non-object in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 532
Recent Headlines - Updated May 22nd
- Wed, 1:00 PM
- In-Depth Review - An iPhone Veteran Evaluates a Samsung Galaxy Note II
- 11:13 AM
- TMO Appearances - Jeff Gamet Discusses Apple Taxes on MacVoices
- 10:25 AM
- Analysis - Corporate Tax Reform Needs to Start in the US, not Ireland
- 8:25 AM
- TMO Quick Tip - iOS Mail: Archive or Delete Individual Emails
- Tue, 8:16 PM
- Analysis - Apple to Senate: We Comply with the Law - Change the Law
- 5:10 PM
- The Back Page - Samsung’s Delusions of Relevance
- 2:11 PM
- Native Instrument Releases Abbey Road 50s Drummer
- 12:47 PM
- News - Senator Paul: Stop Bullying Apple
- 10:01 AM
- News - AT&T Opening FaceTime Over Cellular to All
- 9:27 AM
- TMO Appearances - Jeff Gamet Talks Apple Taxes on The Mac Show
- 8:44 AM
- News - Google to Merchants: We’re Killing Google Checkout
- Mon, 10:50 PM
- Mac Geek Gab Podcast - MGG 450: Don’t Play Ding Dong Ditch on an Airplane
The Mac Observer Reader Specials
-
-
-
-
-
-
-
-
-
Support TMO, Buy from Amazon, MacMall and The Apple Store
