Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Latest Security Update fixes this' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Latest Security Update fixes this
Authored by: houplagrundle on Mar 01, '06 11:41:55PM
Security Update 2006 001

fixes it.

Safari now says "secunia.mov contains an application, do you want to download it?"

And doesn't run the acript

[ Reply to This | # ]

Latest Security Update fixes this
Authored by: houplagrundle on Mar 01, '06 11:50:30PM

Well it makes you aware that Secunia.mov contains an application,
but if you forgot and double click on Secunis.mov then it runs the script.



[ Reply to This | # ]
Latest Security Update doesn't help
Authored by: hst on Mar 02, '06 01:57:40AM
Security Update 2006 001 definitely doesn't help at my mac. The secunia.mov-script is executed after downloading the zip-file and double-clicking the extracted file Secunia.mov . I'll stay with safer terminal.

[ Reply to This | # ]
Security Update makes it warn you
Authored by: hayne on Mar 02, '06 11:47:23PM
The security update makes Safari warn you when you download something that is actually an executable even though it appears (at first glance, but not under close inspection) to be something else (e.g. a movie or an image).

I.e. the security update does not solve the problem of applications (or shell scripts) masquerading as something else. It merely stops the automatic execution of these applications when you download them. You get a warning and the application (or shell script) gets downloaded to your disk. If you then later go and double-click on that file, it will still execute - but that is your own fault.

Sure it would be much better if it was impossible for applications to hide their true nature, but we are not there yet. If you get a warning about something you are downloading being an application executable and you weren't expecting it to be an application, then you should heed the warning and stop downloading it.

[ Reply to This | # ]