Category Archives: Security

myXProtectStatus

Posted on June 16, 2011 by brunerd

myXProtectStatus – A drop down status menulet for XProtect, showing date, version, and threats protected against. Written in bash, and wrapped with Platypus, it is informational only, so don’t ask me to add some menu item to do something, it just reports. … Continue reading →

Posted in Apple, OS X, Scripting, Security | Leave a comment

Advanced Safe Downloads List Tips and Tricks

Posted on June 3, 2011 by brunerd

So I submitted a hint for getting info about the Safe Downloads protection list, then I made a widget, now delving deeper into Safe Downloads list and the command line Let’s look at the BOM for the update: /Library/Preferences/com.apple.ReportMessages.domains /Library/Preferences/com.apple.ReportMessages.v2.domains /System/Library/CoreServices/CoreTypes.bundle/Contents/Resources/XProtect.plist /System/Library/CoreServices/MRTAgent.app /System/Library/LaunchAgents/com.apple.mrt.uiagent.plist … Continue reading →

Posted in Apple, OS X, Security | Leave a comment

Safe Downloads List Info Widget

Posted on June 3, 2011 by brunerd

UPDATE: The AUTOUPDATE code only works as root and so is not useful in the Dashboard environment! This has been removed from the widget. So I slapped together a widget for the Safe Downloads commands I post at OSXHints: Safe … Continue reading →

Posted in Apple, OS X, Scripting, Security | Leave a comment

App Store tips and tricks for sysadmins

Posted on January 14, 2011 by brunerd

App Store Tips, Tricks, and Hacks for the SysAdmin App Store, oh, App Store, like all Apple products you are made first for consumers and in time maybe you will be ready for corporate deployment, but for now, here’s some … Continue reading →

Posted in Apple, OS X, Scripting, Security | 9 Comments

Tearing apart OpinionSpy

Posted on June 3, 2010 by brunerd

Updated: I’ve linked text files of string dumps to the binaries thoughout the article, I suppose not everyone wants to install and run the code to find out themselves! Another OS X malware media darling is out there, but it’s … Continue reading →

Posted in Apple, OS X, Scripting, Security | 6 Comments

Tearing Apart OSX/RSPlug-F

Posted on March 30, 2009 by brunerd

OK… I might be a bit late to the party (and Conficker is grabbing all the headlines) but there were some interesting things I found looking at the headline grabbing trojan OSX/RSPlug-F. Thanks to the effervescent Graham Cluley for his … Continue reading →

Posted in Apple, Industry, OS X, Packages, Scripting, Security | 2 Comments

Office 2008 12.01 Update almost does it

Posted on March 12, 2008 by brunerd

So the Office 2008 12.01 updater came out, it’s got a whole lot of packages for each app and component with postflight scripts written in Python to clean up all the permissions: Mar 12 15:33:00 brunerd runner[8556]: postflight[8773]: setting ownership/permissions … Continue reading →

Posted in Microsoft, Security | Leave a comment

ARD Security Awareness (Standard User can run root commands)

Posted on March 8, 2008 by brunerd

Did you know a Standard user can run commands as root via ARD? This seems really odd doesn’t it? Why would this be necessary? The thing that gets me is how in Tiger you had to explicitly grant each user … Continue reading →

Posted in OS X, Security | Leave a comment