Linked by Thom Holwerda on Sat 18th Apr 2009 09:27 UTC
Mac OS X Remember the Mac trojan that we reported about earlier this year? A trojan was found piggybacking on the back of copies of iWork and Photoshop CS4 found on warez sites and networks, and it would install itself after the user had entered his or her administrator password during the software's installation. This trojan didn't seem like much of a threat back then, but as it turns out, it's now in use in the first Macintosh botnet.
Thread beginning with comment 359421
To read all comments associated with this story, please click here.
...
by FealDorf on Mon 20th Apr 2009 07:06 UTC
FealDorf
Member since:
2008-01-07

I was actually planning to stay out of this software-repo stuff but oh well:

Software Repos have been quite a pain for me; I generally visit a software's website and instead of a clean link I find myself filtering a long list of software; where I may or may not find it considering that either the naming or whatever is wrong; or face sad issues like two version of same software (happened to KDE for me on Kubuntu). Repos are a necessity due to the hostility shown towards installation; but they don't treat the issue that well.

But even then; the fact that when I try to get a good bunch of software like latest alpha's or certain proprietary software (like opera); I end up either adding a new URL to the package-manager or downloading a deb package.

The distribution maintainers necessarily MUST read the code in order to be able to put it into repositories.

That's reminds me of my university examinations go (i'm still studying btw) -- there are about 300 affiliated colleges; so the examiners seem to correct solely on basis of how neat the examination paper looks -- to the point that a friend who attempts 1.5 questions in the entire paper gets complete marks for both the questions and passes the examination.
Even in this case; repo's tend to carry proprietary software and I'm not sure if they get into look into the code..

Proprietary software in repos => Malware chances
Package Downloads => Malware chances
Custom Repos => strange issues + "theoretical" chances of malware

"theoretically" macs were malware-proof too..

@werpu: Yes I know the lines tend to be blurry (despite the apparent distinction demanded in the thread) but Windows Defender's functionality is only limited to malware, so I said that. The point is that it immediately indicates the installation/presence of a malware; and it's not like UAC to pop now and then.

I've encountered it on only one occassion (*other than msconfig) in the last two years. So unless we're talking about users like my friend who I posted about; it does its job as intended. User stupidity does count yes, but we're talking about "real" stupids here not the case of "stupider than the average geek" users.

Personally; I think Defender is underrated; probably 'cuz it's Microsoft; or probably cuz the beta wasn't quite effective. It's based on GIANT antispyware which was quite a good one in the market at that time. Personally I disdain installing alternatives unless we REALLY need to install one (e.g., IE8. thankfully it'll come to an end..) or if it comes in suites or so..

Edited 2009-04-20 07:19 UTC

Reply Score: 1

RE: ...
by lemur2 on Mon 20th Apr 2009 09:52 in reply to "..."
lemur2 Member since:
2007-02-17

That's reminds me of my university examinations go (i'm still studying btw) -- there are about 300 affiliated colleges; so the examiners seem to correct solely on basis of how neat the examination paper looks -- to the point that a friend who attempts 1.5 questions in the entire paper gets complete marks for both the questions and passes the examination.
Even in this case; repo's tend to carry proprietary software and I'm not sure if they get into look into the code..

Proprietary software in repos => Malware chances
Package Downloads => Malware chances
Custom Repos => strange issues + "theoretical" chances of malware

"theoretically" macs were malware-proof too..


Repeat after me ... "impeccable record". "No malware in open source repositories".

It gets easier if you practice it a bit.

Edited 2009-04-20 09:53 UTC

Reply Parent Score: 2

RE[2]: ...
by FealDorf on Mon 20th Apr 2009 12:18 in reply to "RE: ..."
FealDorf Member since:
2008-01-07

Practice what? Reading proprietary lines of code? It'd be easier to practice if it weren't so hilarious
EDIT:
As for the "impeccable record", my university has one too... If the repos are clean it's cuz the PROJECTS are open-source; not cuz of the repositories.

Edited 2009-04-20 12:19 UTC

Reply Parent Score: 1

RE[2]: ...
by smashIt on Mon 20th Apr 2009 17:08 in reply to "RE: ..."
smashIt Member since:
2005-07-06

Repeat after me ... "impeccable record". "No malware in open source repositories".

It gets easier if you practice it a bit.


maybe it gets easier, but it's still a lie

Reply Parent Score: 2