[Ti] Re: i386 viruses
Chris Olson
chris.olson at astcomm.net
Sat Nov 26 07:47:28 PST 2005
On Nov 26, 2005, at 4:18 AM, Mikael Byström wrote:
>> Look at the recent Sony rootkit fiasco
>> (*). The OS allowed for a program to be installed which
>> completely undermined the security of the operating system.
>>
>> NOTE: **** anti virus and anti spyware programs did NOTHING to
>> protect against this security flaw.
>
> That is quite mind-puzzling yes. But if Apple allowed for it (not
> unthinkable but unlikely) couldn't it happen on Mac OS X too?
It wasn't a security flaw at all - it was by design. And Mac OS X is
just as susceptible as Windows.
On an affected Sony CD there's a "Start.app" Mac application in
addition to the Windows installer. The user gets a prompt for an
admin username/password, then exits. It installs two kernel
extensions: PhoenixNub1.kext and PhoenixNub12.kext.
--
Chris
-------------------------
PGP Key: http://astcomm.net/~chris/PGP_Public_Key/
-------------------------
More information about the Titanium
mailing list