Tag Archives: Mac OS X

[Virus] First Mac Zombies in iBotnet

Leave a reply

In their latest “Virus Bulletin” Symantec employees report that obviously the first Mac OS based botnet has appeared. They call it the iBotnet. Two trojan malwares could be identified as:

  • OSX.Iservice
  • OSX.Iservice.B

Technique

The trojans aim at gaining the user password or the root password – depending on what configuration you’re running. By default the “root” account is disabled on OS X and therefore user rights are getting leveled in certain situations. When having gained the user or root password the system is compromised and gets added to the botnet.

Distribution

Both these files are getting distributed currently via peer2peer networks like bittorrent. The trojans are included in illegal copies of

  • iWork09 and
  • Adobe Photoshop CS 4

Dissemination

It is estimated that some thousand Macs are already infected.

Behaviour

There is strong revealing that the botnet already has been used for Distributed-Denial-of-Service (DDoS) attacks using a PHP script.

Conclusion

From analyzing the trojans the Symantec guys reason that there might also be other versions already in the wild, since it seems to be a kinda flexible and expandable technique. Our recommendation: get yourself a virus scanner for your Mac, asap.

[MacOS] Snow Leopard Beta Build 10A314 Seeded

Leave a reply

Since yesterday Apple seeds a beta build 10A314 of the forthcoming Snow Leopard. Developers report Apple recommends them to test 64-bit kernel extensions (Kexts) to speed up transition from 32-bit to 64-bit.

It does not seem that this build contains the rumored new User Interface (UI) called “marble” , that AppleInsider.com has reported a couple of days ago.

[iPhone] Issues with iPhone DFU mode in MacOS 10.5.6

Leave a reply

According to forum reports the iPhone DFU mode, which is required to install custom firmware with PwnageTool, does not get detected properly after updating Mac OS X to 10.5.6.

That means you cannot Jailbreak or Unlock the iPhone currently. The iPhone Dev Team has investigated in to this issue and comes to the conclusion that this is not a countermeasure by Apple, but a bug in the new kernel.

The Phone Dev Team names possible fixes for 10.5.6. As always: you do this at your own risk!

1. Replace the following plugin kexts from within IOUSBFamily.kext with the ones from 10.5.5 and then rebuild kextcache (if you don’t understand this, then you shouldn’t attempt it!)

/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBHub.kext

/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBCompositeDriver.kext

2. Use a USB hub in-between the DFU device and the Mac and insert/reinsert the iPhone’s USB cable.

3. Use a PwnageTool created .ipsw on Windows! Oh the irony!

If you did not update yet to 10.5.6 better don’t do it and wait for a fix or for 10.5.7 to be released.

[MacOS] Switcher’s Hints 1001: Moving Cursor in Terminal

Leave a reply

Mac OS has the wonderful feature that it’s got a BSD compatible Unix enviroment called Darwin as the basis. You can get to it by simply starting the terminal. Once getting used to it you even install Cygwin to your Microsoft Windows installation because it simply is a powerful way of controlling your computer.

Anyway typos and forgotten parameters is pita once you entered some longer commands. Going back to the beginning of the line is real pain, using the right/left cursor arrows takes forever. But there are workarounds…

The following list shows some of the most common commands that help to use the terminal more effectively – derived from the old unix days btw.

Key
 Function
Ctrl-A jump to beginning of the line
Ctrl-E jump to end of the line
Esc-F jump forward word by word (requires to hit Esc every time again!)
Esc-B jump backword word by word (requires to hit Esc every time again!)
Tab completes the names of folders and files

BTW: Did you consider our sponsors yet, they really got the coolest offers. Thanks for helping us maintaining this page free.

[MacOS] Apple recommends using Virus Scanners

Leave a reply

Apple has released a technical note recommending the use of Mac antivirus software. For the first time Apple admits that Macs need protection like other operating systems aswell. Apple recommends three Anti Virus solutions:

The open source virus scanner ClamXav is not mentioned. Besides the major players Symantec and McAfee we can hope that Kaspersky also ports a version of their Anti Virus software soon. Or as Apple says:

“Apple encourages the widespread use of multiple antivirus utilities so that virus programmers have more than one application to circumvent, thus making the whole virus writing process more difficult.”

[MacOS] Switcher’s Hints 1001: Change the Dock to 2D

Leave a reply

You don’t like the Dock in 3D? You like it in 2D but sadly this is available only if you put the Dock to the left or the right side of the screen? There is a simply command that can help you :-)

Changing the Dock to 2D

Just open a terminal and do the following:

  • myUser$ defaults write com.apple.dock no-glass -boolean YES
  • myUser$ killall Dock

Et voilà, it looks like this:

dock-2d.png

Changing the Dock back to 3D

In case you want to change it back to 3D for whatever reason, do this:

  • myUser$ defaults write com.apple.dock no-glass -boolean NO
  • myUser$ killall Dock

And it looks again like default:

dock-3d.png

If this article helped, consider our sponsors, they may help you aswell – at least they help us maintaining these pages, that help you. Got it? Thanks :-)

[MultiPlatform] TrueCrypt 6.1 Released

Leave a reply

The open source encryption program TrueCrypt 6.1 has been released. It now features:

  • Encrypt a non-system partion without losing existing data (Windows)
  • Support for security tokens and smart cards
  • TrueCrypt bootloader can be configured to not show texts
  • Encrypted Windows system partitions can now be mounted by Linux or MacOS X

» Download TrueCrypt 6.1 here

[MacOS] Recommended Apps: Witch

1 Reply

All of us switchers know the situation: rather that switching from one application to another in Microsoft Windows we can switch from every window to another using ALT-TAB. The problem is such behaviour is not known to the Mac world.

The developer Peter Maurer puts it that way:

Sure, you can use Mac OS X’s Exposé to switch windows, but doing so can be very clumsy if you’re the keyboard-only type of user. And don’t all of these windows look just the same when they are scaled down?

Witch lets you access all of your windows by pressing a shortcut and choosing from a clearly arranged list of window titles.

And the best: it’s shareware (!) Sorry for the error before…

»Download Witch here

witch-screenie.png

[e-Biz] Apple Asks Court To Dismiss Psystar’s Countersuit

1 Reply

After Psystar countersued Apple a month ago for anticompetitetive business practices (read here). Apple’s attorneys now respond on 23 pages. Apple’s argumentation in short: Psystar violates Apple’s license agreement when putting Mac OS X on Psystar’s OEM computers.

In the paper Apple tries to circumvent the whole monopoly issue by argueing that there is no specific Mac OS X market, but an Apple Computer market. And since there is no specific market for the sole operating system, Apple is no monopolist. Rather than having a Mac OS X operating system market, there is a market for computers and in this market Apple Computers compete with other computers. Apple sums up that Psystars charges need to be rejected, because Apple as a company cannot be forced to help their competitors and thus weakening their own market position.

You may read the whole argumentation here at ZDNET. They released the whole 23 pages as a PDF.

Our comment:

This whole topic remains fascinating. From a technical point of view we would not follow Apple’s argumentation here, because of a simple fact. Mac OS X is heavily based on lots of open source parts from the Linux and GNU worlds. And the Mac OS X’s kernel Darwin was and still is available for x86 based PCs aswell. This might mean by releasing the kernel as a stand alone version, they implicitly admit that the operating system is only artificially bound to the hardware. You may find more some technical notes in our recent article here (see VII. Modify startup script) and on the wiki of the Chaos Communication Congress 2007.

[MacOS] MacOS X Leopard Update 10.5.5

Leave a reply

Finally Apple released update 10.5.5 yesterday. Features of 10.5.5 include Apple’s recent security updates, Addressbook bugfixes and lots of other fixes (read all details here). To sum things up: Apple recommends to apply this update as soon as possible. And yes we will obey.

All genuine Mac users can safely update. There are no reports about problems. You may do so using the Software Update App.

OSX86 user may wait some days, we are just examining the steps. Most likely best thing is to download the Combo Update from here and use our instructions here. People report broken audio drivers on ALC883 chipsets (AppleHDA patcher solved this). We’ll get back to you once we checked out all the details.