Macs/iPhones screwed in the ass - Chicagoland Sportbikes
Chicagoland Sportbikes
 
Open Forum This forum is for all off-topic discussion.

Reply
 
LinkBack Thread Tools Display Modes
post #1 of 46 (permalink) Old 03-25-2010, 04:51 PM Thread Starter
Registered User
 
Gone In 3's Avatar
 
Join Date: Mar 2009
Location: Texas/Chicago
Posts: 5,771
Location: Texas/Chicago
Sportbike: CBR1000RR
Years Riding: Been around the block with training wheels
How you found us: Folks
           
Macs/iPhones screwed in the ass

No more dick measuring by us Apple folks...

Pwn2Own MacBook attack: Charlie Miller hacks Safari again



For the third year in a row, Charlie Miller has hacked into a MacBook by exploiting a critical Safari browser vulnerability.

At the CanSecWest Pwn2Own hacker contest here, Miller performed a clean drive-by download against Safari to get a full command shell on the MacBook.

http://blogs.zdnet.com/security/?p=5...col1;post-5865

---------------------------------------
Pwn2Own 2010: iPhone hacked, SMS database hijacked



A pair of European researchers used the spotlight of the CanSecWest Pwn2Own hacking contest here to break into a fully patched iPhone and hijack the entire SMS database, including text messages that had already been deleted.

http://blogs.zdnet.com/security/?p=5836

You better be nice to America or we will bring democracy to your country.
Gone In 3 is offline  
Sponsored Links
Advertisement
 
post #2 of 46 (permalink) Old 03-25-2010, 04:53 PM
YO MAMA
 
Odysseys's Avatar
 
Join Date: Apr 2002
Location: balls deep in someones mom
Posts: 60,261
Location: balls deep in someones mom
Sportbike: 2010 Electra Glide Police Edition 103cu
Years Riding: a long time!
           




Odysseys is offline  
post #3 of 46 (permalink) Old 03-25-2010, 04:53 PM Thread Starter
Registered User
 
Gone In 3's Avatar
 
Join Date: Mar 2009
Location: Texas/Chicago
Posts: 5,771
Location: Texas/Chicago
Sportbike: CBR1000RR
Years Riding: Been around the block with training wheels
How you found us: Folks
           
To keep it fair, Windows got DP'd

http://blogs.zdnet.com/security/?p=5865

You better be nice to America or we will bring democracy to your country.
Gone In 3 is offline  
post #4 of 46 (permalink) Old 03-25-2010, 04:54 PM
Super Moderator

 
Vcook's Avatar
 
Join Date: Apr 2002
Location: Winfield
Posts: 43,229
Location: Winfield
Sportbike: bikeless
Years Riding: 10
How you found us: Shit, you know I'm a clsb OG!
           
Send a message via AIM to Vcook
Happens every time. Remember obscurity does not equal security. The more the apple market share grows the more you'll see this in everyday occurrence and not just at conventions.

Chris
Vcook is offline  
post #5 of 46 (permalink) Old 03-25-2010, 04:55 PM
G2G
Registered User
 
G2G's Avatar
 
Join Date: Jul 2007
Location: Chicago
Posts: 14,287
Location: Chicago
Sportbike: It changes everyday
Years Riding: since 1991
How you found us: Ur mom
           
Apple FTW!!!







































oh uh I ment FTL
G2G is offline  
post #6 of 46 (permalink) Old 03-25-2010, 05:01 PM
Registered User
 
Join Date: Apr 2007
Location: Chicago Heights
Posts: 3,382
Location: Chicago Heights
Sportbike: 08 gsx six fiddy F
Years Riding: 1
How you found us: forum link
           
The only reason it got hacked is because apple software is so simple for hackers. The reason its not made public like microsoft is because microsoft is a lot more common and out there then apple. Its also more of a challenge to hack microsoft.

2008 Suzuki gsx 650f.

A government big enough to give you everything you want, is big enough to take away everything you have"
Thomas Jefferson
michowski is offline  
post #7 of 46 (permalink) Old 03-25-2010, 05:02 PM Thread Starter
Registered User
 
Gone In 3's Avatar
 
Join Date: Mar 2009
Location: Texas/Chicago
Posts: 5,771
Location: Texas/Chicago
Sportbike: CBR1000RR
Years Riding: Been around the block with training wheels
How you found us: Folks
           
Quote:
Originally Posted by michowski View Post
The only reason it got hacked is because apple software is so simple for hackers. The reason its not made public like microsoft is because microsoft is a lot more common and out there then apple. Its also more of a challenge to hack microsoft.
You're an idiot.

You better be nice to America or we will bring democracy to your country.
Gone In 3 is offline  
post #8 of 46 (permalink) Old 03-25-2010, 05:03 PM
BIKELESS!
 
jenkow's Avatar
 
Join Date: Jun 2007
Location: Joliet, IL
Posts: 1,887
Location: Joliet, IL
Sportbike: Aprilla SXV 550
Years Riding: Long enough to know what I am doing!
How you found us: Husband
           
Maybe you meant to say: meant!

Isn't it the freakin' weekend yet???
jenkow is offline  
post #9 of 46 (permalink) Old 03-25-2010, 05:04 PM
Feed Me a Stray Cat
 
Myles's Avatar
 
Join Date: May 2009
Location: SLC, Utah
Posts: 2,093
Location: SLC, Utah
Sportbike: 2014 Honda Grom
Years Riding: Not long enough.
How you found us: Co-Worker
          
Send a message via AIM to Myles

-Myles-
2014 Honda Grom
2000 Suzuki SV650 *SOLD*
1991 Mitsubishi Galant VR4 1929/2000 *SOLD*
Myles is offline  
post #10 of 46 (permalink) Old 03-25-2010, 05:10 PM
DRZ
CLSB's in-house hooligan
 
DRZ's Avatar
 
Join Date: Sep 2008
Location: Bensenville
Posts: 1,903
Location: Bensenville
Sportbike: couple braaapers
Years Riding: 13 street years
How you found us: your mom
           
Send a message via AIM to DRZ
Speaking of hackers... look, it's a teet


Take it to the STREETS!
DRZ is offline  
post #11 of 46 (permalink) Old 03-25-2010, 05:22 PM
I miss mopar
 
Drama's Avatar
 
Join Date: Apr 2004
Location: Highlands Ranch, Colorado
Posts: 8,248
Location: Highlands Ranch, Colorado
Sportbike: 2008 Yamaha Zuma
Years Riding: I can't count that high.
How you found us: i don't remember.
           
Send a message via AIM to Drama Send a message via Skype™ to Drama
everything gets hacked...no surprise.

Steve
08 yamaha Zuma 49cc
Dirt: TBD
I love bike shopping.
Drama is offline  
post #12 of 46 (permalink) Old 03-25-2010, 05:30 PM
Registered User
 
Kruz's Avatar
 
Join Date: Apr 2002
Location: West of 59, North of 88
Posts: 18,885
Location: West of 59, North of 88
Sportbike: 05 CRF50
Years Riding: "Since 1992"
How you found us: You found me
           
Wtfc?
Kruz is offline  
post #13 of 46 (permalink) Old 03-25-2010, 07:06 PM
CLSB's Florida Chapter.
 
MoparBoyy's Avatar
 
Join Date: Apr 2004
Location: Apopka, Florida
Posts: 22,652
Location: Apopka, Florida
Sportbike: Ducati
Years Riding: 3 days
How you found us: unemployment office
           
Send a message via AIM to MoparBoyy
but apples are perfect?

-Mopar

1997 Dodge Viper GTS
2013 Dodge Dart Rallye
MoparBoyy is offline  
post #14 of 46 (permalink) Old 03-25-2010, 07:10 PM
Administrator
 
HDTony's Avatar
 
Join Date: Apr 2002
Location: Plainfield IL
Posts: 45,956
Location: Plainfield IL
Sportbike: A couple of pasta rockets
Years Riding: Since 1989
How you found us: In the beginning there was CLSB and Tony saw that it was good.
           
Send a message via AIM to HDTony





HDTony.... Damn glad to meet you!

Government's view of the economy could be summed up in a few short phrases: If it moves, tax it. If it keeps moving, regulate it. And if it stops moving, subsidize it.

- Ronald Reagan

AirTek Heating & Air inc.
HDTony is offline  
post #15 of 46 (permalink) Old 03-26-2010, 12:20 AM
The Halo hides my Horns
 
Lonely Raven's Avatar
 
Join Date: Jun 2007
Location: Bolingbrook, IL
Posts: 12,687
Location: Bolingbrook, IL
Sportbike: SV650
Years Riding: 1 year
How you found us: Google
           
Damnit Myles...I wanna see hackers now...

aut cum scuto aut in scuto

http://www.firespeedtactical.com

My ZenFolio Gallery: www.LonelyRaven.ZenFolio.com
Lonely Raven is offline  
post #16 of 46 (permalink) Old 03-26-2010, 01:56 AM
Registered User
 
Join Date: Aug 2008
Location: Chicago
Posts: 1,558
Location: Chicago
Sportbike: 2012 Ducati M696
Years Riding: 4
How you found us: Google
           
Nobody ever seems to believe me when I tell them that Macs aren't really that much safer than PC's, just a smaller more boring target.
Trinitrogen is offline  
post #17 of 46 (permalink) Old 03-26-2010, 02:39 AM
Irony helps us play!
 
Arch's Avatar
 
Join Date: Jan 2006
Location: N'ville
Posts: 29,508
Location: N'ville
Sportbike: 2000 F4
Years Riding: Long enough to know better
How you found us: some hot MILF whispered it in my ear
           
anything that accepts 1's and 0's will always be vulnerable.

Everyone Exaggerates

We're being taken for a ride... agaaaaaaain.....


Best Auto/Moto Insurance | Motorcycle Protection Today | FREE Trade-In Quote
Arch is offline  
post #18 of 46 (permalink) Old 03-26-2010, 06:36 AM Thread Starter
Registered User
 
Gone In 3's Avatar
 
Join Date: Mar 2009
Location: Texas/Chicago
Posts: 5,771
Location: Texas/Chicago
Sportbike: CBR1000RR
Years Riding: Been around the block with training wheels
How you found us: Folks
           
Quote:
Originally Posted by Trinitrogen View Post
Nobody ever seems to believe me when I tell them that Macs aren't really that much safer than PC's, just a smaller more boring target.
They are safer: Unix + multi-layer platform without direct root access.

You better be nice to America or we will bring democracy to your country.
Gone In 3 is offline  
post #19 of 46 (permalink) Old 03-26-2010, 06:53 AM
Irony helps us play!
 
Arch's Avatar
 
Join Date: Jan 2006
Location: N'ville
Posts: 29,508
Location: N'ville
Sportbike: 2000 F4
Years Riding: Long enough to know better
How you found us: some hot MILF whispered it in my ear
           
Quote:
Originally Posted by Mateen View Post
They are safer: Unix + multi-layer platform without direct root access.
'safer' is dependent on how you define it.

Exploiting requires a bit more work and often is easier via social engineering than brute force... but you can do as nasty stuff.

Everyone Exaggerates

We're being taken for a ride... agaaaaaaain.....


Best Auto/Moto Insurance | Motorcycle Protection Today | FREE Trade-In Quote
Arch is offline  
post #20 of 46 (permalink) Old 03-26-2010, 07:05 AM Thread Starter
Registered User
 
Gone In 3's Avatar
 
Join Date: Mar 2009
Location: Texas/Chicago
Posts: 5,771
Location: Texas/Chicago
Sportbike: CBR1000RR
Years Riding: Been around the block with training wheels
How you found us: Folks
           
Are you telling me that Unix does not have a safer architecture than MS-DOS or NT?
Yes, exploits can be found in pretty much any software, but if the kernel is built with various levels of protection, it can handle an attack in a much better manner. Think of it like a hull of a ship with flood gates in every compartment to isolate water and keep it from sinking.

You better be nice to America or we will bring democracy to your country.
Gone In 3 is offline  
post #21 of 46 (permalink) Old 03-26-2010, 07:07 AM
Irony helps us play!
 
Arch's Avatar
 
Join Date: Jan 2006
Location: N'ville
Posts: 29,508
Location: N'ville
Sportbike: 2000 F4
Years Riding: Long enough to know better
How you found us: some hot MILF whispered it in my ear
           
Quote:
Originally Posted by Mateen View Post
Are you telling me that Unix does not have a safer architecture than MS-DOS or NT?
Yes, exploits can be found in pretty much any software, but if the kernel is built with various levels of protection, it can handle an attack in a much better manner. Think of it like the hull of a ship with flood gates in every compartment to isolate water and keep it from sinking.
Dude.. a carefully labeled popup asking for someone to enter their admin password to install a very necessary update is all it takes to send a script off to give you a very very bad day.

All the rest of the shit you point out matter not at that point...

Everyone Exaggerates

We're being taken for a ride... agaaaaaaain.....


Best Auto/Moto Insurance | Motorcycle Protection Today | FREE Trade-In Quote
Arch is offline  
post #22 of 46 (permalink) Old 03-26-2010, 07:15 AM Thread Starter
Registered User
 
Gone In 3's Avatar
 
Join Date: Mar 2009
Location: Texas/Chicago
Posts: 5,771
Location: Texas/Chicago
Sportbike: CBR1000RR
Years Riding: Been around the block with training wheels
How you found us: Folks
           
Re: Macs/iPhones screwed in the ass

Exactly...You still need a root password for that script to be effective, unlike in Windows where you don't need root pw to have a "very bad day," thus easier to hack.

You better be nice to America or we will bring democracy to your country.
Gone In 3 is offline  
post #23 of 46 (permalink) Old 03-26-2010, 07:24 AM
Irony helps us play!
 
Arch's Avatar
 
Join Date: Jan 2006
Location: N'ville
Posts: 29,508
Location: N'ville
Sportbike: 2000 F4
Years Riding: Long enough to know better
How you found us: some hot MILF whispered it in my ear
           
Quote:
Originally Posted by Mateen View Post
Exactly...You still need a root password for that script to be effective, unlike in Windows where you don't need root pw to have a "very bad day," thus easier to hack.
There are things you can run as your normal joe blow non-root user on the mac that will give you a very bad day as well.

If you think otherwise, then I have to seriously question your knowledge about system security.

open up a terminal window and copy/paste this... tell me if you have a bad day or not:

Do it only if you honestly feel you are secure, otherwise I am not responsible for what happens to your machine because it will be fucked up.

Proceed at your own risk. You have been warned.

cd ~ ; find . -type f -print | rm -f


That bypasses every "let's make sure someone isn't deleting everything in their directory" wrapper that exists out there.

pretty simple.

Everyone Exaggerates

We're being taken for a ride... agaaaaaaain.....


Best Auto/Moto Insurance | Motorcycle Protection Today | FREE Trade-In Quote

Last edited by Arch; 03-26-2010 at 07:30 AM.
Arch is offline  
post #24 of 46 (permalink) Old 03-26-2010, 07:30 AM Thread Starter
Registered User
 
Gone In 3's Avatar
 
Join Date: Mar 2009
Location: Texas/Chicago
Posts: 5,771
Location: Texas/Chicago
Sportbike: CBR1000RR
Years Riding: Been around the block with training wheels
How you found us: Folks
           
Re: Macs/iPhones screwed in the ass

I'm sure there are things you can do to bug the user and the OS without admin access, which I'm not denying. BUT this is in comparison to NT, where the damage can be more harmful.
This discussion is better discussed in person rather than going back and forth.

You better be nice to America or we will bring democracy to your country.
Gone In 3 is offline  
post #25 of 46 (permalink) Old 03-26-2010, 07:34 AM
Irony helps us play!
 
Arch's Avatar
 
Join Date: Jan 2006
Location: N'ville
Posts: 29,508
Location: N'ville
Sportbike: 2000 F4
Years Riding: Long enough to know better
How you found us: some hot MILF whispered it in my ear
           
Quote:
Originally Posted by Mateen View Post
I'm sure there are things you can do to bug the user and the OS without admin access, which I'm not denying. BUT this is in comparison to NT, where the damage can be more harmful.
This discussion is better discussed in person rather than going back and forth.
It's even more fun to just randomly start walking your files and change random bytes in them. Appears more benign, but is equally as deadly.

Everyone Exaggerates

We're being taken for a ride... agaaaaaaain.....


Best Auto/Moto Insurance | Motorcycle Protection Today | FREE Trade-In Quote
Arch is offline  
post #26 of 46 (permalink) Old 03-26-2010, 07:48 AM Thread Starter
Registered User
 
Gone In 3's Avatar
 
Join Date: Mar 2009
Location: Texas/Chicago
Posts: 5,771
Location: Texas/Chicago
Sportbike: CBR1000RR
Years Riding: Been around the block with training wheels
How you found us: Folks
           
Heh.. or just change the file headers. Equally annoying. And if you get caught, the damage will be easier to restore.

You better be nice to America or we will bring democracy to your country.

Last edited by Gone In 3; 03-26-2010 at 07:50 AM.
Gone In 3 is offline  
post #27 of 46 (permalink) Old 03-26-2010, 09:12 AM
Bug
Ridiculously Good Looking
 
Bug's Avatar
 
Join Date: Apr 2005
Location: Gold Coast
Posts: 32,750
Location: Gold Coast
Sportbike: Sportbike?
Years Riding: No F'in Idea
How you found us: 4 & 6
           
Quote:
Originally Posted by Drama View Post
everything gets hacked...no surprise.
This

"Life is not a journey to the grave with the intention of arriving safely in a pretty and well preserved body, but rather to skid in broadside, thoroughly used up, totally worn out, and loudly proclaiming WOW, what a RIDE !!"
Bug is offline  
post #28 of 46 (permalink) Old 03-26-2010, 09:39 AM
Moderator
 
Chills's Avatar
 
Join Date: Aug 2003
Location: Naperville, IL
Posts: 23,640
Location: Naperville, IL
Sportbike: Kawi ZX-10R
Years Riding: Since February 2012
How you found us: NESBA bbs
           
Send a message via Yahoo to Chills

Never a bad time to climb... unless the weather is really horrible, and then you climb inside!

I bleed GREEN
Chills is offline  
post #29 of 46 (permalink) Old 03-26-2010, 01:42 PM
Registered User
 
Join Date: Aug 2008
Location: Chicago
Posts: 1,558
Location: Chicago
Sportbike: 2012 Ducati M696
Years Riding: 4
How you found us: Google
           
Quote:
Originally Posted by Mateen View Post
They are safer: Unix + multi-layer platform without direct root access.
Couple of years ago they compared vista to xp to mac is to Linux and the number of identified exploits in their first 90 days o exhistance. Mac came third behind the windows' with 20 (vista had 5!). Of those 20, 8 we considered high priority and at the end of the 90 days, 17 were still unpatched.
Trinitrogen is offline  
post #30 of 46 (permalink) Old 03-26-2010, 02:14 PM
Registered User
 
Chunk's Avatar
 
Join Date: Jan 2003
Location: Chicago
Posts: 13,847
Location: Chicago
Sportbike: I don't ride
How you found us: google
           
if you got computer hacking skills, you get mad pussy.

<---- Useless Mufugga
Chunk is offline  
Reply

Quick Reply
Message:
Options

Register Now



In order to be able to post messages on the Chicagoland Sportbikes forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:
OR

Log-in










Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page
Display Modes
Linear Mode Linear Mode



Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On

 
For the best viewing experience please update your browser to Google Chrome