The Mac Observer

Skip navigational links

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Editorial - A Month of Continuous Foolishness

Editorial - A Month of Continuous Foolishness

by , 12:35 PM EST, December 20th, 2006

Sooner or later you are going to hear about a project by two fellows to bypass the normal channels of security bug reporting and openly publish previously "undocumented" security bugs in Mac OS X every day for a month. The justification for this appears to be a craze started by H.D. Moore's Month of Browser Bugs and some kind of desire for notoriety.

There are some problems with this approach.

First, not all security bugs can be turned into effective exploits. As we've seen over the last year, many security flaws are proclaimed in Mac OS X, but few see effective exploitation for technical reasons. Second, the idea that using forceful methods combined with a convenient bit of publicity as a justification is unwarranted, even if the security researcher remains anonymous for now. Third, there are appropriate channels to handle these discoveries that are professional and protect everyone. Finally, the supposition that there are some people who take the security of Mac OS X more seriously than the BSD professionals and Apple engineers is stupendously arrogant and self-serving.

There are many technical professionals working behind the scenes to secure Mac OS X. As we've seen with Windows, the reputation of a company can stand or fall on this issue. If a security researcher bangs on Apple about a flaw and doesn't seem to get invited to dinner with Phil Schiller, that's just too bad. In this case the needs of the one are outweighed by the needs of the many.

So when you read about this, the best thing to do is feel sorry for these wannabes and move on to the next story.

Digg!

Recent TMO Headlines - Updated March 27th

Sun, 12:40 PM
Are You Secure with Your Security? – Mac Geek Gab 650
Sat, 3:20 AM
Get Free Bitcoins from 12 Faucets That (Still) Pay
Fri, 8:40 PM
Steve Wozniak Accepts Award from Startup World Cup, Says 'This One's for Apple'
Fri, 7:16 PM
Super Mario Run 2 is Out Just in Time to Eat Up Your Weekend
Fri, 6:46 PM
Apple Releases Swift Playgrounds 1.2 with Support for More Languages
Fri, 6:07 PM
A Robotics Competition You Should Totally Check Out
Fri, 4:06 PM
Coming Soon To Your iPhone: Over 70 New Unicode 10 Emojis
Fri, 3:39 PM
Customizing the Services Menu Helps You Optimize macOS
Fri, 1:54 PM
If You Haven't Changed Your iCloud Password in the Past Two Years do it Now
Fri, 1:09 PM
App Store Quality Issues, Change Your iCloud Password - TMO Daily Observations 2017-03-24
Fri, 11:57 AM
Apple Store Online, (PRODUCT)RED iPhone 7, New 9.7-inch iPad Available Now
Fri, 9:39 AM
Rogue One: A Star Wars Story Available on iTunes
  • __________
  • Buy Stuff, Support TMO!
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!