mailing list archives
Re: mac trojan in-the-wild
From: Peter Besenbruch <prb () lava net>
Date: Mon, 5 Nov 2007 07:21:15 -1000
On Thu, Nov 01, 2007 at 03:36:00PM -1000, Peter Besenbruch wrote:
Firefox throws up a download dialog, asking what I should do
see these great images, I need to save the file, and type "rpm -i
prettyyoungthing.rpm," and that I need to do it as root.....
On Monday 05 November 2007 00:34:18 Ben Wheeler <b.wheeler () ulcc ac uk> wrote:
Ok, let's make it easier. What can you install with one click, or maybe
two, but definitely just
clicky-clicky-don't-bother-to-read-it-just-click-ok rather than having to
type anything? A: Firefox extension. As well as ripping off your internet
banking login details (probably more valuable than pwning your machine
anyway), maybe it can add a special MIME type which opens with an
application that prompts, as innocuously as possible, for the root pw so it
can install a "new codec" or whatever.
Yes, but not you are talking about a different kind of exploit than what has
been previously discussed. We were, in fact discussing the kind of exploits
that owned machines. What you raise is a separate issue that should be
discussed in a separate thread.
Hawaiian Astronomical Society: http://www.hawastsoc.org
HAS Deepsky Atlas: http://www.hawastsoc.org/deepsky
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
Re: mac trojan in-the-wild Jim Harrison (Nov 02)
Re: mac trojan in-the-wild Peter Besenbruch (Nov 01)
Re: mac trojan in-the-wild worried security (Nov 02)