A second look at the Mac OS X Leopard firewall
Matt Johnston
pelorus at mac.com
Wed Oct 31 07:45:39 PDT 2007
On 31 Oct 2007, at 13:42, Derek Chesterfield wrote:
> On 31 Oct 2007, at 13:23, Matt Johnston wrote:
>
>> On 31 Oct 2007, at 12:32, LuKreme wrote:
>>> A lot of blather, some of which is symply hysteria and FUD
>>> disguised as 'revelation'.
>>> "Oh Noes! The time server is running! Panic attack!"
>>> Idiots.
>>> Doesn't Heise-security have a history? Or is that someone else?
>> The fact they have unreproduceable "evidence" there was a Kerberos
>> server running tells me there's faults in their testing methodology.
>>
>> Not much different to GreenPeace and their recent outing of Apple.
>> You know the one where they pointed out that Apple was doing
>> everything they said and was in complete legal compliance and, in
>> fact, was ahead of some of the companies that were higher up on
>> GreenPeace's scale?
>
> Kerberos is now used by Leopard to authenticate Bonjour connections.
> I guess the daemon gets started when needed, and will hang around
> afterwards.
Case in point: Why is Derek Chesterfield telling us this and not Heise
Security?
Well done, Derek :)
M
More information about the MacOSX-talk
mailing list