Discussion: Marche à suivre cheval de Troie
Afficher un message
Vieux 21/06/2008, 03h58
AStht = AppleScript trojan horse template
  #45
PA5CAL
Rompu à MacG
 
Avatar de PA5CAL
 
Date d'inscription: 21/07/05
Localisation: Île-de-France
Messages: 6318
Expérience: 57
Activité: 21%
Disco: PA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGenerationPA5CAL est dans le carré VIP de MacGeneration
Sinon, je pense qu'on va bientôt reparler de cette histoire, et de tout le tintouin qui a été fait autour par les vendeurs de scoops et d'antivirus.

Les "Trojans" ont été bricolés par six jeunes types en l'espace d'un mois sur un forum consacré à la sécurité des Macs. Il semble que l'affaire leur ait un peu échappé sur la fin. En tout cas ils semblent se gausser de toutes les âneries qu'on raconte au sujet de leurs créations.

Pour citer quelques uns des protagonistes:
Citation:
Just to clarify for non-native English readers or for Internet journalists, anti-virus researchers and anyone else with severe learning disabilities... AStht is not a trojan. It does not pretend to be anything other than what it is. The acronym stands for AppleScript trojan horse template. There may well be trojans created from this template, some may even be 'in the wild', AStht is neither.
Citation:
Welcome to the wide wide world of 'computer security research'. Its 99% FUD*.

*: Fear, uncertainty and doubt
Citation:
How long do you think before Apple releases a Security Update. Although this is just as simple as changing permissions on one tiny file.

Has anyone seen this on Packet Storm yet?
Citation:
The fact that Apple creates security holes in their OS is not in and of itself a problem. The fact that they then market OS X as being secure ( Apple - Mac OS X Leopard - Technology - Security ) is a problem because they lull users into a false sense of security. There will always be users who will download and run programs without having any idea of what they are... as Ron White said "You can't fix stupid" and no amount of security within the OS is going to prevent trojans from being viable. The only problem is the marketing which gets users to believe that they are somehow protected from themselves when that has never been the case in Mac OS X at all. Any user can delete their own important data, and any user can run a program with undesirable consequences. Apple should make this clear instead of proclaiming OS X 'safe and easy' which prompts the media frenzy and the endless posts such as "Why won't Apple do something to protect us from these evil Trojans!!"

Try not downloading and running the damn thing.
Citation:
Freaky or someone at Intego read about it in this thread and then sent out a press release about the 'threat' (including outright blatant lies in Freaky's case at least) to increase sales of their security software. Then every Internet journalist on Earth either reposted the press release or in some cases paraphrased it which is taking it farther and farther from the truth, which can be read right here in this thread and of course any Internet Reporters who have questions can post questions right here in this thread of this public forum anytime they wish. I bet not one of them bothers.
Citation:
Andrew, it didn't 'get out', the Security Industry Experts came here, read about it and then did a Chicken Little routine to the Internet Media which promptly repeated what they were told or bent it even further out-of-shape.
...
Dernière modification par PA5CAL ; 21/06/2008 à 05h46.
PA5CAL est déconnecté   Réponse avec citation