StopBadware.org Urges Apple to Deal with Safari Carpet Bombing Issue
StopBadware.org Urges Apple to Deal with Safari Carpet Bombing Issue
by , 4:45 PM EDT, May 20th, 2008
A security researcher, Nitesh Dhanjani, has recently discovered that Apple's Safari browser is susceptible to what's been coined "carpet bombing," an unwelcome barrage of downloaded files. Apple has said that the issue is not of immediate concern, but the StopBadware.org site is urging Apple to take action now in its blog.
The issue was recently described by TMO and relates to the fact that Safari cannot be configured to ask for the user's permission before it downloads a resource. As a result, a maliciously crafted Web page could clutter the user's download destination with hundreds of unwanted files.
Apple's response was:
We can file that as an enhancement request for the Safari team. Please note that we are not treating this as a security issue, but a further measure to raise the bar against unwanted downloads. This will require a review with the Human Interface team. We want to set your expectations that this could take quite a while, if it ever gets incorporated.
"Assuming Nitesh’s analysis is accurate," wrote Laureli Mallek, in the blog," 'unwanted downloads,' as Apple calls them, represent a serious security threat to users, who can be easily tricked into executing a malicious file. StopBadware.org believes that users should have control over software being downloaded to their computers, and we encourage Apple to reconsider its stance and treat this as the security issue that it is."
Observer Comments
Comments are currently closed. Please email the author instead.
Recent Headlines - Updated May 23rd
- Wed, 9:31 AM
- How-To - How to Configure a Static DHCP Reservation with Airport Extreme
- 8:57 AM
- News - Apple’s Jonathan Ive Knighted in London
- 8:21 AM
- Product News - Apple Camera Raw Update Adds Canon, Olympus Support
- 7:50 AM
- TMO Quick Tip - Mac OS X: Handy Terminal Dock Tweaks
- Tue, 9:51 PM
- News - NPD: Apple Dominates Q1 Mobile PC Shipments
- 7:17 PM
- Apple Stock Watch - Barclays: Apple Is So Big…
- 4:01 PM
- Deal Brothers - New Mac Pro 12 Core 2.66GHz Intel Xeon: $4739
- 4:00 PM
- Analysis - Estimated Apple TV Sales to Date: 6.3 Million
- 3:20 PM
- Video Review - Buffalo AirStation WZR-D1800H 802.11ac Router Video Review
- 1:47 PM
- News - Apple’s Brand Value Grows 19%, Remains World’s Top Brand
- 11:13 AM
- News - Galaxy Tab Injunction Hearing Set for June 7
- 10:35 AM
- MGG Answers - How to Troubleshoot Connection Issues on Public Wi-Fi Networks
The Mac Observer Reader Specials
Macsales Add 2nd Hard Drive or SSD to Mac mini, MacBook or MacBook Pro. 1TB of Hard Drive or SSD Capacity from $64.99! Video Guides Make it easy - OWC DataDoubler - Macsales.com 
Mac RAM Upgrades: MacBook Pro 16GB kits $475, 8GB Kits for $119.99! iMac 16GB RAM Kits (4x 4GB) for $229.99! Mac Pro Memory 32GB Kit for $399.99, 64GB Kit for $889.99! Mac Hard Drives 2TB Seagate SATA II for $249.99! Click Here!
If you're using a Mac, then you've gotta check out PokerOnAMac.com. Online casinos and poker rooms are literally giving away cash and the casino sites at Poker on a Mac do the unthinkable, they actually reward! Join today, the download is free! 
Looking to find online casinos for mac? We can help you find the best real money casino sites where you can play your favorite casino games including blackjack and slots. -
-
-
-
-
-
