Never miss an update Follow AppleInsider
Friday, February 25, 2011, 02:45 pm
Inside Mac OS X 10.7 Lion: Apple exposing beta to security experts for review
Apple is inviting security experts to examine its developer preview of Mac OS X 10.7 Lion, apparently the first time it has expanded beyond its core developers to expose its new software to community scrutiny."I wanted to let you know that I've requested that you be invited to the prerelease seed of Mac OS X Lion, and you should receive an invitation soon," Apple wrote to several security researchers, including such luminaries as Dino Dai Zovi, Stefan Esser and Charlie Miller.
"As you have reported Mac OS X security issues in the past, I thought that you might be interested in taking a look at this. It contains several improvements in the area of security countermeasures," the letter stated, according to a report by CNET.
The report cited Miller, who has demonstrated cracks in Apple's software, as saying, "as far as I know they have never reached out to security researchers in this way. Also, we won't have to pay for it like everybody else. It's not hiring us to do pen-tests of it, but at least it's not total isolation anymore, and at least security crosses their mind now."
Miller predicted Lion would incorporate full ASLR (Address Space Layout Randomization), a security technique that puts important data in unpredictable locations, making it harder to target known weaknesses. Snow Leopard currently limits ASLR protection to libraries, leaving the location of code, stack, and heap easier for crackers to aim their assaults.
Apple's iOS 4.3 will reportedly add ASLR, making it more difficult to jailbreak devices via exploits of userland vulnerabilities. This suggests Lion will also adopt the same protections when it arrives this summer.
Dai Zovi, who has similarly demonstrated exploits for Apple's software before at events such as CanSecWest, tweeted, "Apple has invited me to look at the Lion developer preview. I won't be able to comment on it until its release, but hooray for free access," later adding, "This looks to be a step in the direction of opening up a bit and inviting more dialogue with external researchers."
Dai Zovi also mused, "Will Lion be the 'Vista' of Mac OS X? In the sense that they start taking security seriously, not the sense that nobody wants to use it."
On Topic: Mac OS X
- Apple adds security enhancements to Java 6 in latest update
- OS X Mavericks' new App Nap, Timer Coalescing features target battery efficiency
- Adobe releases major update to Creative Cloud desktop apps
- Safari 7.0 streamlined and accelerated for OS X Mavericks
- Why the Mac Finder took so long to get the new Tabs in OS X Mavericks
Previous Comments View All
It's actually really nice to see Apple doing this. It sure shows they want to deliver a safer OS.
Let's hope it helps OSX not being the first hacked OS every year at that hacker contest...
Quote:
Originally Posted by mstone 
Allow / Deny pop-ups like Vista?
Allow / Deny pop-ups like Vista?
It already does for administrative actions, a GUI wrapper around sudo. Every Linux and BSD distro has the same feature, and with a little work, Windows Vista/7 can be set up with the same security (by default, the popups are useless and just annoying).
Quote:
Originally Posted by FitzGerald
It's actually really nice to see Apple doing this. It sure shows they want to deliver a safer OS.
Let's hope it helps OSX not being the first hacked OS every year at that hacker contest...
It's actually really nice to see Apple doing this. It sure shows they want to deliver a safer OS.
Let's hope it helps OSX not being the first hacked OS every year at that hacker contest...
They only reason OS X is hacked first is because people have incentive to win the Mac. Nobody wants the PC so they don't try so hard to hack it.
Quote:
Originally Posted by mstone
Allow / Deny pop-ups like Vista?
Allow / Deny pop-ups like Vista?
Oh the inhumanity!
Quote:
Originally Posted by FitzGerald
It's actually really nice to see Apple doing this. It sure shows they want to deliver a safer OS.
Let's hope it helps OSX not being the first hacked OS every year at that hacker contest...
It's actually really nice to see Apple doing this. It sure shows they want to deliver a safer OS.
Let's hope it helps OSX not being the first hacked OS every year at that hacker contest...
Let's remember they all got hacked by the same person every year, who targets only the Macs, has his hack planned in detail which only works after lowering security twice
Quote:
Originally Posted by mstone
Allow / Deny pop-ups like Vista?
Allow / Deny pop-ups like Vista?
Oh No. I would have to change my sig.
Quote:
Originally Posted by Lukeskymac
Let's remember they all got hacked by the same person every year, who targets only the Macs, has his hack planned in detail which only works after lowering security twice
Let's remember they all got hacked by the same person every year, who targets only the Macs, has his hack planned in detail which only works after lowering security twice
Oh totally forgot about that little detail
And I guess macosxp has a good point too
Quote:
Originally Posted by Lukeskymac
Let's remember they all got hacked by the same person every year, who targets only the Macs, has his hack planned in detail which only works after lowering security twice
Let's remember they all got hacked by the same person every year, who targets only the Macs, has his hack planned in detail which only works after lowering security twice
Yes, but all the platforms are set up that way. Windows 7, 64-bit, has simply proven to be much harder to hack (not impossible, but harder).
I for one am thrilled that they're taking security seriously, if for nothing else but to help prevent the Mac from being a laughing stock at these contests. They have shown that the reason we don't have viruses is not because Mac and Linux is unhackable, but simply because malware programmers focus on Windows. If Apple continued to neglect this, it was going to be inevitable that viruses and malware would come to Mac.
Some security features coming in Lion:
- ALSR (makes it hard to predict memory locations. Also means that the Mac Kernel will be 64-bit by default, since 64-bit is required for ALSR to work effectively).
- Safari - process isolation. A technique/concept borrowed from Google's Chrome browser.
In my 7 years of using Macs, I've never had a security issue (that I'm aware of). Compare this with my dad whose 2 year old Toshiba got completely screwed up last December...
But it's always better to be on the safe side. Built-in virus scanning would be nice, with definitions freely updated by Apple.
Latest Apple Headlines
-
High resolution images claim to show 'iPhone 5S' and iPhone 5 display assemblies side-by-side
~4 hours ago -
Steve Jobs discusses his legacy in rare 1994 video interview
~7 hours ago -
Briefly: Sprint LTE service expands to 22 more areas
~9 hours ago -
Facebook for iOS adds privacy options and status icons in update
~10 hours ago -
Google's Nexus 7 tablets dying early, possibly due to cheap memory
~10 hours ago - more...
Want to write for AppleInsider? Submit your application now!
| Model | White | Black | |
|---|---|---|---|
| iPad mini (WiFi only) | |||
| 16GB WiFi |  |
$329.00 | $329.00 |
| 32GB WiFi | |
$429.00 | $429.00 |
| 64GB WiFi | |
$529.00 | $529.00 |
| iPad mini (WiFi + 4G) | |||
 |
 |
 |
|
| 16GB 4G White | $459.00 | $459.00 | $459.00 |
| 32GB 4G White | $559.00 | $539.99 | $559.00 |
| 64GB 4G White | $659.00 | $659.00 | $629.99 |
| 16GB 4G Black | $459.00 | $459.00 | $459.00 |
| 32GB 4G Black | $559.00 | $539.99 | $539.99 |
| 64GB 4G Black | $659.00 | $659.00 | $629.99 |
Lowest Prices Anywhere!
| Model | Price | You Save |
|---|---|---|
| 11"1.3GHz/4GB/128GB | $964.18* | $34.82 |
| 11" 1.3GHz/8GB/128GB | $1,061.18* | $37.82 |
| 11" 1.3GHz/8GB/256GB | $1,255.18* | $43.82 |
| 11"1.7GHz/8GB/128GB | $1,206.68* | $42.32 |
| 11"1.7GHz/8GB/256GB | $1,400.68* | $48.32 |
| 11" 1.7GHz/8GB/512GB | $1,691.68* | $57.32 |
| 13" 1.3GHz/4GB/128GB | $1,061.18* | $37.82 |
| 13" 1.3GHz/4GB/256GB | $1,255.18* | $43.82 |
| 13" 1.3GHz/8GB/256GB | $1,352.18* | $46.82 |
| 13" 1.3GHz/8GB/512GB | $1,643.18* | $46.82 |
| 13" 1.7GHz/8GB/256GB | $1,497.00* | $52.00 |
| 13" 1.7GHz/8GB/512GB | $1,788.68* | $60.32 |
* price with Promo Code:
APPLEINSIDER01
|
||
| Click for even more configurations | ||
Dai Zovi also mused, "Will Lion be the 'Vista' of Mac OS X? In the sense that they start taking security seriously, not the sense that nobody wants to use it."
Allow / Deny pop-ups like Vista?