Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Handlers Diary Blog InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Lion Released

Published: 2011-07-21
Last Updated: 2011-07-21 13:53:32 UTC
by Mark Hofman (Version: 1)
3 comment(s)

Those of you that are Apple users will no doubt have noticed a few updates to Safari, but more importantly an update to the Snow Leopard O/S.  Lion is out today. A few of us are Apple users and are in the process of installing/updating the product already.

Unlike previous upgrades this one is delivered digitally through the App store on the Mac. A 3.7GB update, so you will likely want to download it when connected to something cheaper than your 3G card.

No real major issues have been identified so far, but then it is early days.  One change is that Rosetta is no longer installed, so some older applications may no longer work.  In other words Lion is not fully backwards compatible with things that you might be running. 

Over the next few days if there is anything of significance to report one of the handlers we'll let you know. As always if you have anything to add feel free to comment or contacts us.

UPDATE:

The install was pretty seamless and straight forward. Little snitch is one of my favourite apps and needed to be updated. The rest of the apps on the machine still seem to be working.  I guess I'll find out tomorrow when it has its first work day.  One thing that was a smidge irritating is the two finger swipe you use to scroll. It now defaults to "natural" which feels completely backwards as the reverse to what you were used to under snow leopard.  A quick trip to system preferences fixed that.  

The Release notes make mention of two main security features Address space Layout Randomisation (ASLR). Something that has been available in a number of operating systems for a while makes it way to the MAC.  By randomising the memory locations where key data is stored it should make it a little bit more difficult to do things like buffer overflows.  The second feature is probably a bit more useful which is application sandboxing. Applications are in a contained environment and are prevented from doing "evil" things.  How effective these two measures are I guess we will see in the weeks to come as more people have a play with the product.  The updates to Safari also mean that web pages and browser based applications are sandboxed.  

-- Mark --

 

Keywords: Apple lion OS upgrade
3 comment(s)
Diary Archives